BID:69168

MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability

Info

MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability

Bugtraq ID:	69168
Class:	Boundary Condition Error
CVE:	CVE-2014-4345
Remote:	Yes
Local:	No
Published:	Aug 09 2014 12:00AM
Updated:	Oct 19 2017 03:03AM
Credit:	Tomas Kuthan
Vulnerable:	Ubuntu Ubuntu Linux 14.04 LTS Ubuntu Ubuntu Linux 12.04 LTS Ubuntu Ubuntu Linux 10.04 LTS SuSE SUSE Linux Enterprise Software Development Kit 11 SP3 SuSE SUSE Linux Enterprise Server 11 SP3 for VMware SuSE SUSE Linux Enterprise Server 11 SP3 SuSE Suse Linux Enterprise Desktop 11 SP3 Redhat Enterprise Linux Workstation 6 Redhat Enterprise Linux Server 6 Redhat Enterprise Linux HPC Node Optional 6 Redhat Enterprise Linux HPC Node 6 Redhat Enterprise Linux Desktop Workstation 5 client Redhat Enterprise Linux Desktop Optional 6 Redhat Enterprise Linux Desktop 6 Redhat Enterprise Linux Desktop 5 client Redhat Enterprise Linux 5 Server Oracle Solaris 11.2 Oracle Enterprise Linux 7 Oracle Enterprise Linux 6.2 Oracle Enterprise Linux 6 Oracle Enterprise Linux 5 Oracle Communications WebRTC Session Controller 7.2 Oracle Communications WebRTC Session Controller 7.1 Oracle Communications WebRTC Session Controller 7.0 MIT krb5 1.12.1 MIT Kerberos 5 1.6.2 MIT Kerberos 5 1.6.1 MIT Kerberos 5 1.6 MIT Kerberos 5 5-1.9 MIT Kerberos 5 5-1.8.3 MIT Kerberos 5 5-1.8.2 MIT Kerberos 5 5-1.8.1 MIT Kerberos 5 5-1.8 MIT Kerberos 5 5-1.7.1 MIT Kerberos 5 5-1.7 MIT Kerberos 5 1.6 MIT Kerberos 4 5-1.9.4 MIT Kerberos 4 5-1.9.3 MIT Kerberos 4 5-1.9.2 MIT Kerberos 4 5-1.9.1 MIT Kerberos 4 5-1.8.6 MIT Kerberos 4 5-1.8.5 MIT Kerberos 4 5-1.8.4 MIT Kerberos 4 5-1.12.1 MIT Kerberos 4 5-1.12 MIT Kerberos 4 5-1.11.5 MIT Kerberos 4 5-1.11.4 MIT Kerberos 4 5-1.11.3 MIT Kerberos 4 5-1.11.2 MIT Kerberos 4 5-1.11.1 MIT Kerberos 4 5-1.11 MIT Kerberos 4 5-1.10.4 MIT Kerberos 4 5-1.10.3 MIT Kerberos 4 5-1.10.2 MIT Kerberos 4 5-1.10.1 MIT Kerberos 4 5-1.10 Mandriva Business Server 1 X86 64 Mandriva Business Server 1 IBM BladeCenter Advanced Management Module 3.66G Gentoo Linux F5 Enterprise Manager 3.1.1 F5 Enterprise Manager 3.1 F5 Enterprise Manager 3.0 F5 Enterprise Manager 2.3 F5 Enterprise Manager 2.1 F5 BIG-IQ Security 4.3 F5 BIG-IQ Security 4.2 F5 BIG-IQ Security 4.1 F5 BIG-IQ Security 4.0 F5 BIG-IQ Device 4.3 F5 BIG-IQ Device 4.2 F5 BIG-IQ Cloud 4.3 F5 BIG-IQ Cloud 4.2 F5 BIG-IQ Cloud 4.1 F5 BIG-IQ Cloud 4.0 F5 BIG-IP WOM 11.2 F5 BIG-IP WOM 11.0 F5 BIG-IP WOM 10.2.4 F5 BIG-IP WOM 10.2.2 F5 BIG-IP WOM 10.2.1 F5 BIG-IP WOM 10.0 F5 BIG-IP WOM 11.3.0 F5 BIG-IP WOM 11.2.1 HF5 F5 BIG-IP WOM 11.2.1 HF3 F5 BIG-IP WOM 11.2.1 F5 BIG-IP WOM 11.2.0 HF5 F5 BIG-IP WOM 11.2.0 HF3 F5 BIG-IP WOM 11.1.0 HF7 F5 BIG-IP WOM 11.1.0 F5 BIG-IP WOM 10.2.1 HF1 F5 BIG-IP WebAccelerator 11.2.0 0 F5 BIG-IP WebAccelerator 11.3 F5 BIG-IP WebAccelerator 11.2.1 HF3 F5 BIG-IP WebAccelerator 11.2.1 F5 BIG-IP WebAccelerator 11.2 HF3 F5 BIG-IP WebAccelerator 11.1 F5 BIG-IP WebAccelerator 11.0 F5 BIG-IP WebAccelerator 10.2.4 F5 BIG-IP WebAccelerator 10.2.1 F5 BIG-IP WebAccelerator 10.0 F5 BIG-IP WebAccelerator 11.2.1 HF5 F5 BIG-IP WebAccelerator 11.2.0 HF5 F5 BIG-IP WebAccelerator 11.1.0 HF7 F5 BIG-IP WebAccelerator 10.2.1 HF1 F5 BIG-IP PSM 11.4.1 F5 BIG-IP PSM 11.3 F5 BIG-IP PSM 11.2 F5 BIG-IP PSM 11.1 F5 BIG-IP PSM 11.0 F5 BIG-IP PSM 10.2.4 F5 BIG-IP PSM 10.2.1 F5 BIG-IP PSM 10.0 F5 BIG-IP PSM 11.3.0 HF4 F5 BIG-IP PSM 11.2.1 HF5 F5 BIG-IP PSM 11.2.1 HF3 F5 BIG-IP PSM 11.2.1 HF2 F5 BIG-IP PSM 11.2.1 HF1 F5 BIG-IP PSM 11.2.1 F5 BIG-IP PSM 11.2.0 HF5 F5 BIG-IP PSM 11.2.0 HF3 F5 BIG-IP PSM 11.2.0 HF2 F5 BIG-IP PSM 11.1.0 HF7 F5 BIG-IP PSM 10.2.1 HF1 F5 BIG-IP PEM 11.5.1 F5 BIG-IP PEM 11.5 F5 BIG-IP PEM 11.3 F5 BIG-IP PEM 11.6.0 F5 BIG-IP PEM 11.4.1 F5 BIG-IP PEM 11.3.0 HF4 F5 BIG-IP LTM 11.5.1 F5 BIG-IP LTM 11.5 F5 BIG-IP LTM 11.2.1 HF3 F5 BIG-IP LTM 11.2 HF3 F5 BIG-IP LTM 11.2 F5 BIG-IP LTM 11.0 F5 BIG-IP LTM 10.2.4 F5 BIG-IP LTM 10.2.2 F5 BIG-IP LTM 10.0 F5 BIG-IP LTM 11.6.0 F5 BIG-IP LTM 11.5 F5 BIG-IP LTM 11.4.1 F5 BIG-IP LTM 11.3.0 HF4 F5 BIG-IP LTM 11.3.0 F5 BIG-IP LTM 11.2.1 HF5 F5 BIG-IP LTM 11.2.1 HF2 F5 BIG-IP LTM 11.2.1 HF1 F5 BIG-IP LTM 11.2.1 F5 BIG-IP LTM 11.2.0 HF5 F5 BIG-IP LTM 11.2.0 HF2 F5 BIG-IP LTM 11.1.0 HF7 F5 BIG-IP LTM 11.1.0 F5 BIG-IP LTM 10.2.1 HF1 F5 BIG-IP LTM 10.2.1 F5 BIG-IP Link Controller 11.2.0 0 F5 BIG-IP Link Controller 11.6 F5 BIG-IP Link Controller 11.5.1 F5 BIG-IP Link Controller 11.5 F5 BIG-IP Link Controller 11.3 F5 BIG-IP Link Controller 11.2.1 HF3 F5 BIG-IP Link Controller 11.2.1 F5 BIG-IP Link Controller 11.2 HF3 F5 BIG-IP Link Controller 11.1 F5 BIG-IP Link Controller 11.0 F5 BIG-IP Link Controller 10.2.4 F5 BIG-IP Link Controller 10.2.2 F5 BIG-IP Link Controller 10.2.1 F5 BIG-IP Link Controller 10.0 F5 BIG-IP Link Controller 11.4.1 F5 BIG-IP Link Controller 11.3.0 HF4 F5 BIG-IP Link Controller 11.2.1 HF5 F5 BIG-IP Link Controller 11.2.1 HF2 F5 BIG-IP Link Controller 11.2.1 HF1 F5 BIG-IP Link Controller 11.2.0 HF5 F5 BIG-IP Link Controller 11.2.0 HF2 F5 BIG-IP Link Controller 11.1.0 HF7 F5 BIG-IP Link Controller 10.2.1 HF1 F5 BIG-IP GTM 11.5.1 F5 BIG-IP GTM 11.5 F5 BIG-IP GTM 11.3 F5 BIG-IP GTM 11.2.1 HF3 F5 BIG-IP GTM 11.2 F5 BIG-IP GTM 11.0 F5 BIG-IP GTM 10.2.4 F5 BIG-IP GTM 10.2.2 F5 BIG-IP GTM 10.2.1 F5 BIG-IP GTM 10.0 F5 BIG-IP GTM 11.6.0 F5 BIG-IP GTM 11.4.1 F5 BIG-IP GTM 11.3.0 HF4 F5 BIG-IP GTM 11.2.1 HF5 F5 BIG-IP GTM 11.2.1 HF2 F5 BIG-IP GTM 11.2.1 HF1 F5 BIG-IP GTM 11.2.1 F5 BIG-IP GTM 11.2.0 HF5 F5 BIG-IP GTM 11.2.0 HF3 F5 BIG-IP GTM 11.2.0 HF2 F5 BIG-IP GTM 11.1.0 HF7 F5 BIG-IP GTM 11.1.0 F5 BIG-IP GTM 10.2.1 HF1 F5 BIG-IP Edge Gateway 11.3 F5 BIG-IP Edge Gateway 11.2.1 HF3 F5 BIG-IP Edge Gateway 11.2.1 F5 BIG-IP Edge Gateway 11.2 HF3 F5 BIG-IP Edge Gateway 11.2 F5 BIG-IP Edge Gateway 11.1 F5 BIG-IP Edge Gateway 11.0 F5 BIG-IP Edge Gateway 10.2.4 F5 BIG-IP Edge Gateway 10.2.2 F5 BIG-IP Edge Gateway 10.2.1 F5 BIG-IP Edge Gateway 10.1 F5 BIG-IP Edge Gateway 11.2.1 HF5 F5 BIG-IP Edge Gateway 11.2.1 HF2 F5 BIG-IP Edge Gateway 11.2.0 HF5 F5 BIG-IP Edge Gateway 11.1.0 HF7 F5 BIG-IP Edge Gateway 10.2.1 HF1 F5 BIG-IP ASM 11.2.0 HF2 0 F5 BIG-IP ASM 11.2.0 0 F5 BIG-IP ASM 11.0.0 0 F5 BIG-IP ASM 10.2.4 0 F5 BIG-IP ASM 10.0.0 0 F5 BIG-IP ASM 11.5.1 F5 BIG-IP ASM 11.5 F5 BIG-IP ASM 10.2.2 F5 BIG-IP ASM 10.2.1 F5 BIG-IP ASM 11.6.0 F5 BIG-IP ASM 11.4.1 F5 BIG-IP ASM 11.3.0 HF4 F5 BIG-IP ASM 11.3.0 F5 BIG-IP ASM 11.2.1 HF5 F5 BIG-IP ASM 11.2.1 HF3 F5 BIG-IP ASM 11.2.1 HF2 F5 BIG-IP ASM 11.2.1 HF1 F5 BIG-IP ASM 11.2.1 F5 BIG-IP ASM 11.2.0 HF5 F5 BIG-IP ASM 11.2.0 HF3 F5 BIG-IP ASM 11.1.0 HF7 F5 BIG-IP ASM 11.1.0 F5 BIG-IP ASM 10.2.1 HF1 F5 BIG-IP APM 11.5.1 F5 BIG-IP APM 11.2 F5 BIG-IP APM 11.0 F5 BIG-IP APM 10.2.4 F5 BIG-IP APM 10.2.2 F5 BIG-IP APM 10.0 F5 BIG-IP APM 11.6.0 F5 BIG-IP APM 11.5.0 F5 BIG-IP APM 11.4.1 F5 BIG-IP APM 11.4.0 F5 BIG-IP APM 11.3.0 HF4 F5 BIG-IP APM 11.3.0 F5 BIG-IP APM 11.2.1 HF5 F5 BIG-IP APM 11.2.1 HF3 F5 BIG-IP APM 11.2.1 HF2 F5 BIG-IP APM 11.2.1 HF1 F5 BIG-IP APM 11.2.1 F5 BIG-IP APM 11.2.0 HF5 F5 BIG-IP APM 11.2.0 HF3 F5 BIG-IP APM 11.2.0 HF2 F5 BIG-IP APM 11.1.0 HF7 F5 BIG-IP APM 11.1.0 F5 BIG-IP APM 10.2.1 HF1 F5 BIG-IP APM 10.2.1 F5 BIG-IP APM 10.1 F5 BIG-IP Analytics 11.5.1 F5 BIG-IP Analytics 11.5 F5 BIG-IP Analytics 11.3 F5 BIG-IP Analytics 11.2.1 HF3 F5 BIG-IP Analytics 11.2.1 F5 BIG-IP Analytics 11.2 HF3 F5 BIG-IP Analytics 11.2 F5 BIG-IP Analytics 11.6.0 F5 BIG-IP Analytics 11.4.1 F5 BIG-IP Analytics 11.3.0 HF4 F5 BIG-IP Analytics 11.2.1 HF5 F5 BIG-IP Analytics 11.2.1 HF2 F5 BIG-IP Analytics 11.2.1 HF1 F5 BIG-IP Analytics 11.2.0 HF5 F5 BIG-IP Analytics 11.2.0 HF2 F5 BIG-IP Analytics 11.1.0 HF7 F5 BIG-IP Analytics 11.1.0 F5 BIG-IP Analytics 11.0.0-HF2 F5 BIG-IP Analytics 11.0.0 F5 BIG-IP AFM 11.5.1 F5 BIG-IP AFM 11.5 F5 BIG-IP AFM 11.3 F5 BIG-IP AFM 11.6.0 F5 BIG-IP AFM 11.4.1 F5 BIG-IP AFM 11.3.0 HF4 F5 BIG-IP AAM 11.5.1 F5 BIG-IP AAM 11.5 F5 BIG-IP AAM 11.6.0 F5 BIG-IP AAM 11.4.1 F5 BIG-IP AAM 11.4.0 F5 ARX 6.4 F5 ARX 6.3 F5 ARX 6.2 F5 ARX 6.1.1 F5 ARX 6.1 F5 ARX 6.0 CentOS CentOS 5 Avaya one-X Client Enablement Services 6.2 Avaya IP Office Server Edition 9.0 Avaya IP Office Server Edition 8.1 Avaya IP Office Application Server 9.0 Avaya CMS r17 Avaya Aura Session Manager 6.3.1 Avaya Aura Session Manager 6.3.3 Avaya Aura Session Manager 6.3 Avaya Aura Experience Portal 6.0.2 + Avaya Communication Manager Server DEFINITY Server SI/CS + Avaya Communication Manager Server S8100 + Avaya Communication Manager Server S8300 + Avaya Communication Manager Server S8500 + Avaya Communication Manager Server S8700 Avaya Aura Experience Portal 6.0.1 Avaya Aura Experience Portal 7.0 Avaya Aura Experience Portal 6.0 Avaya Aura Conferencing 8.0 Avaya Aura Collaboration Environment 3.0 Avaya Aura Collaboration Environment 2.0

Not Vulnerable:	Oracle Solaris 11.2.4.6.0 MIT krb5 1.12.2 MIT Kerberos 5 1.11.6

Exploit / POC

MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

References

MIT kerberos 5 'ldap_principal2.c' Buffer Overflow Vulnerability

References:

CVE-2014-4345 Numeric Errors vulnerability in Kerberos (Oracle)
Kerberos Homepage (MIT)
Buffer overrun in kadmind with LDAP backend (MIT)
krb5 security and bug fix update (RHSA-2014-1389) (Avaya)
Oracle Critical Patch Update Advisory - October 2017 (Oracle)
Security Bulletin: Vulnerabilities affect IBM's AMM (IBM)
sol15566: Kerberos vulnerability CVE-2014-4345 (F5 Networks)