Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2006-3083

EPSS 0.07% · P21
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-3083

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The (1) krshd and (2) v4rcp applications in (a) MIT Kerberos 5 (krb5) up to 1.5, and 1.4.x before 1.4.4, when running on Linux and AIX, and (b) Heimdal 0.7.2 and earlier, do not check return codes for setuid calls, which allows local users to gain privileges by causing setuid to fail to drop privileges using attacks such as resource exhaustion.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
MIT Kerberos 5多个本地权限提升漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Kerberos是美国麻省理工学院(MIT)开发的一套网络认证协议,它采用客户端/服务器结构,并且客户端和服务器端均可对对方进行身份认证(即双重验证),可防止窃听、防止replay攻击等。MIT Kerberos 5(又名krb5)是美国麻省理工学院(MIT)开发的一套网络认证协议,它采用客户端/服务器结构,并且客户端和服务器端均可对对方进行身份认证(即双重验证),可防止窃听、防止replay攻击等。 MIT Kerberos 5软件包中的某些工具实现上存在漏洞,本地攻击者可能利用此漏洞提升自己在系统中的
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2006-3083

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2006-3083

Please Login to view more intelligence information

Same Patch Batch · n/a · 2006-08-09 · 42 CVEs total

CVE-2006-3449Microsoft PowerPoint畸形记录处理代码执行漏洞(MS06-048)
CVE-2006-4029AGEphone SIP报文处理缓冲区溢出漏洞
CVE-2006-3084MIT Kerberos 多个本地权限提升漏洞
CVE-2006-3979ColdFusion AdminAPI认证绕过漏洞
CVE-2006-3439Microsoft Windows Server服务远程缓冲区溢出漏洞(MS06-040)
CVE-2006-3440Microsoft Winsock Gethostbyname远程缓冲区溢出漏洞(MS06-041)
CVE-2006-3441Microsoft Windows DNS客户端缓冲区溢出漏洞(MS06-041)
CVE-2006-3443Microsoft Windows用户配置文件权限提升漏洞(MS06-051)
CVE-2006-3648Microsoft Windows未处理异常远程代码执行漏洞
CVE-2006-3438Microsoft超级链接对象库函数溢出漏洞
CVE-2006-3444Microsoft Windows 2000内核本地权限提升漏洞(MS06-049)
CVE-2006-4028WordPress多个不明安全漏洞
CVE-2006-3639Microsoft IE源元素跨域访问漏洞(MS06-042)
CVE-2006-3640Microsoft IE窗口位置跨域信息泄露漏洞(MS06-042)
CVE-2006-3643Microsoft管理控制台重新定向跨站脚本漏洞(MS06-044)
CVE-2006-3649Microsoft Visual Basic for Applications文档检查溢出漏洞(MS06-047)
CVE-2006-4022Intel 2100 PRO/无线网络连接驱动程序内存破坏漏洞
CVE-2006-4023PHP ip2long函数SQL注入漏洞
CVE-2006-4024Festalon pce/hes.c程序 HES文件堆缓冲区溢出漏洞
CVE-2006-4025XennoBB 'Profile.PHP'SQL注入漏洞

Showing top 20 of 42 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2006-3083

No comments yet

Leave a comment