Home > Vulnerability Database > CVE-2023-25564

Mend.io Vulnerability Database

CVE-2023-25564

Date: February 14, 2023

GSS-NTLMSSP is a mechglue plugin for the GSSAPI library that implements NTLM authentication. Prior to version 1.2.0, memory corruption can be triggered when decoding UTF16 strings. The variable "outlen" was not initialized and could cause writing a zero to an arbitrary place in memory if "ntlm_str_convert()" were to fail, which would leave "outlen" uninitialized. This can lead to a denial of service if the write hits unmapped memory or randomly corrupts a byte in the application memory space. This vulnerability can trigger an out-of-bounds write, leading to memory corruption. This vulnerability can be triggered via the main "gss_accept_sec_context" entry point. This issue is fixed in version 1.2.0.

Language: C

Severity Score

6.5

Related Resources (7)

Url: https://github.com/gssapi/gss-ntlmssp/commit/c753000eb31835c0664e528fbc99378ae0cbe950

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-25564

Url: https://github.com/gssapi/gss-ntlmssp/security/advisories/GHSA-r85x-q5px-9xfq

Url: https://security-tracker.debian.org/tracker/CVE-2023-25564

Url: https://access.redhat.com/security/cve/CVE-2023-25564

Url: https://github.com/gssapi/gss-ntlmssp/releases/tag/v1.2.0

Url: https://www.mend.io/vulnerability-database/CVE-2023-25564

Severity Score

6.5

Weakness Type (CWE)

Out-of-bounds Write

CWE-787

CVSS v3.1

Base Score:	6.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	HIGH
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	LOW
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-25564

Date: February 14, 2023

Language: C

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?