VYPR
Unrated severityNVD Advisory· Published Nov 18, 2013· Updated Jun 16, 2026

CVE-2013-1418

CVE-2013-1418

Description

The setup_server_realm function in main.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.7, when multiple realms are configured, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a crafted request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

8
  • Mit/Kerberos 52 versions
    cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mit:kerberos_5:*:*:*:*:*:*:*:*range: <1.10.7
    • (no CPE)range: <1.10.7
  • cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
  • OpenSUSE/openSUSE4 versions
    cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:opensuse:opensuse:11.4:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:opensuse:12.2:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
    • cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.