VYPR
Unrated severityNVD Advisory· Published Apr 22, 2010· Updated Jun 16, 2026

CVE-2010-1320

CVE-2010-1320

Description

Double free vulnerability in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x before 1.8.2 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a request associated with (1) renewal or (2) validation.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • Mit/Kerberos 55 versions
    cpe:2.3:a:mit:kerberos_5:1.7:*:*:*:*:*:*:*+ 4 more
    • cpe:2.3:a:mit:kerberos_5:1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:mit:kerberos_5:1.7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mit:kerberos_5:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:mit:kerberos_5:1.8.1:*:*:*:*:*:*:*
    • (no CPE)range: <1.8.2

Patches

Vulnerability mechanics

References

15

News mentions

0

No linked articles in our index yet.