Kth

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2012-6303 2Kth Opensuse 3Opensuse Snack Sound ToolkitWavesurfer Apr 29, 2026 Oct 28, 2013 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote attackers to cause a denial of service (crash) and possibly execut...Show more Heap-based buffer overflow in the GetWavHeader function in generic/jkSoundFile.c in the Snack Sound Toolkit, as used in WaveSurfer 1.8.8p4, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large chunk size in a WAV file.Show less
CVE-2006-0677 1Kth 1Heimdal Apr 16, 2026 Feb 14, 2006 N/A· v4 N/A· v3 7.8 HIGH· v2 telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows remote unauthenticated attackers to cause a denial of service (server crash) via unknown vectors that trigger a null dereference.
CVE-2006-0582 1Kth 1Heimdal Apr 16, 2026 Feb 8, 2006 N/A· v4 N/A· v3 2.1 LOW· v2 Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via unknown vectors.
CVE-2004-0371 1Kth 1Heimdal Apr 16, 2026 May 4, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-re...Show more Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path.Show less
CVE-2002-1235 3Debian KthMit 4Debian Linux Kerberos 5Kth Kerberos 4+1 more Apr 16, 2026 Nov 4, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in K...Show more The kadm_ser_in function in (1) the Kerberos v4compatibility administration daemon (kadmind4) in the MIT Kerberos 5 (krb5) krb5-1.2.6 and earlier, (2) kadmind in KTH Kerberos 4 (eBones) before 1.2.1, and (3) kadmind in KTH Kerberos 5 (Heimdal) before 0.5.1 when compiled with Kerberos 4 support, does not properly verify the length field of a request, which allows remote attackers to execute arbitrary code via a buffer overflow attack.Show less
CVE-2002-1226 1Kth 1Heimdal Apr 16, 2026 Oct 28, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows (CVE-2002...Show more Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows (CVE-2002-1225).Show less
CVE-2002-1225 1Kth 1Heimdal Apr 16, 2026 Oct 28, 2002 N/A· v4 N/A· v3 10.0 HIGH· v2 Multiple buffer overflows in Heimdal before 0.5, possibly in both the (1) kadmind and (2) kdc servers, may allow remote attackers to gain root access.
CVE-2002-0754 2Freebsd Kth 3Freebsd HeimdalHeimdal Apr 16, 2026 Aug 12, 2002 N/A· v4 N/A· v3 7.2 HIGH· v2 Kerberos 5 su (k5su) in FreeBSD 4.4 and earlier relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped t...Show more Kerberos 5 su (k5su) in FreeBSD 4.4 and earlier relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them.Show less
CVE-2002-0600 2Kth Luke Mewburn 2Kth Kerberos Lukemftp Apr 16, 2026 Jun 18, 2002 N/A· v4 N/A· v3 7.5 HIGH· v2 Heap overflow in the KTH Kerberos 4 FTP client 4-1.1.1 allows remote malicious servers to execute arbitrary code on the client via a long response to a passive (PASV) mode request.
CVE-2001-1444 1Kth 1Kth Kerberos Apr 16, 2026 Aug 27, 2001 N/A· v4 N/A· v3 7.5 HIGH· v2 The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentica...Show more The Kerberos Telnet protocol, as implemented by KTH Kerberos IV and Kerberos V (Heimdal), does not encrypt authentication and encryption options sent from the server, which allows remote attackers to downgrade authentication and encryption mechanisms via a man-in-the-middle attack.Show less
CVE-2001-1443 1Kth 1Kth Kerberos Apr 16, 2026 Aug 27, 2001 N/A· v4 N/A· v3 5.0 MEDIUM· v2 KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote attackers to read communications via a man-in-the-middle...Show more KTH Kerberos IV and Kerberos V (Heimdal) for Telnet clients do not encrypt connections if the server does not support the requested encryption, which allows remote attackers to read communications via a man-in-the-middle attack.Show less
CVE-2001-0036 1Kth 1Kth Kerberos Apr 16, 2026 Feb 16, 2001 N/A· v4 N/A· v3 1.2 LOW· v2 KTH Kerberos IV allows local users to overwrite arbitrary files via a symlink attack on a ticket file.
CVE-2001-0035 1Kth 1Kth Kerberos Apr 16, 2026 Feb 16, 2001 N/A· v4 N/A· v3 7.2 HIGH· v2 Buffer overflow in the kdc_reply_cipher function in KTH Kerberos IV allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long authentication request.
CVE-2001-0034 1Kth 1Kth Kerberos Apr 16, 2026 Feb 16, 2001 N/A· v4 N/A· v3 7.2 HIGH· v2 KTH Kerberos IV allows local users to specify an alternate proxy using the krb4_proxy variable, which allows the user to generate false proxy responses and possibly gain privileges.
CVE-2001-0033 2Kth Netbsd 2Kth Kerberos Netbsd Apr 16, 2026 Feb 16, 2001 N/A· v4 N/A· v3 7.2 HIGH· v2 KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the...Show more KTH Kerberos IV allows local users to change the configuration of a Kerberos server running at an elevated privilege by specifying an alternate directory using with the KRBCONFDIR environmental variable, which allows the user to gain additional privileges.Show less
CVE-1999-1099 1Kth 1Kth Kerberos Apr 16, 2026 Nov 22, 1996 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Kerberos 4 allows remote attackers to obtain sensitive information via a malformed UDP packet that generates an error string that inadvertently includes the realm name and the last user.