CVE-2010-4022
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-4022
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The do_standalone function in the MIT krb5 KDC database propagation daemon (kpropd) in Kerberos 1.7, 1.8, and 1.9, when running in standalone mode, does not properly handle when a worker child process "exits abnormally," which allows remote attackers to cause a denial of service (listening process termination, no new connections, and lack of updates in slave KVC) via unspecified vectors.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mit Kerberos kpropd do_standalone函数输入验证漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Kerberos 是一款广泛使用的使用强壮的加密来验证客户端和服务器端的网络协议。 当运行在standalone模式下时,Kerberos 1.7,1.8,和1.9版本中的MIT krb5 KDC数据库传播守护进程(kpropd)中的do_standalone函数没有对工作子进程的"不正常退出"进行正确处理。远程攻击者可以借助未明向量导致拒绝服务(监听进程终止,无新连接,在KVC中缺乏更新)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-4022
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-4022
Please Login to view more intelligence information
- http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-001.txtx_refsource_CONFIRM
- http://lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.htmlvendor-advisoryx_refsource_SUSE
- https://nvd.nist.gov/vuln/detail/CVE-2010-4022
Same Patch Batch · n/a · 2011-02-10 · 95 CVEs total
| CVE-2010-4196 | Adobe Shockwave Player Shockwave 3d Asset模块输入验证漏洞 | |
| CVE-2010-4193 | Adobe Shockwave Player任意代码执行漏洞 | |
| CVE-2010-4191 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2010-4187 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2010-4093 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2010-2589 | Adobe Shockwave Player dirapi.dll模块整数溢出漏洞 | |
| CVE-2010-2588 | Adobe Shockwave Player dirapi.dll模块缓冲区溢出漏洞 | |
| CVE-2010-2587 | Adobe Shockwave Player dirapi.dll模块缓冲区溢出漏洞 | |
| CVE-2010-4188 | Adobe Shockwave Player dirapi.dll模块缓冲区溢出漏洞 | |
| CVE-2010-4195 | Adobe Shockwave Player TextXtra模块输入验证漏洞 | |
| CVE-2010-4194 | Adobe Shockwave Player输入验证漏洞 | |
| CVE-2010-4306 | Adobe Shockwave Player输入验证漏洞 | |
| CVE-2010-4307 | Adobe Shockwave Player缓冲区溢出漏洞 | |
| CVE-2011-0033 | Microsoft Windows多个平台OpenType字体编码字符漏洞 | |
| CVE-2011-0035 | Microsoft Internet Explorer内存远程代码执行漏洞 | |
| CVE-2011-0036 | Microsoft Internet Explorer mshtml.dll库任意代码执行漏洞 | |
| CVE-2011-0038 | Microsoft Internet Explorer不可信搜索路径漏洞 | |
| CVE-2011-0043 | Microsoft Windows多个平台Kerberos非密钥校验漏洞 | |
| CVE-2011-0091 | Microsoft Windows多个平台Kerberos敏感信息泄露漏洞 | |
| CVE-2011-0092 | Microsoft Visio对象内存破坏漏洞 |
Showing top 20 of 95 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2010-4022
No comments yet