This page lists publicly disclosed CVE vulnerabilities affecting kth heimdal (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2006-0677 | telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows remote unauthenticated attackers to cause a denial of service (server crash) via unknown vectors that trigger a null dereference. | [email protected] | 7.8 | 7.88% | 2006-02-14 | 2026-04-16 |
| CVE-2006-0582 | Unspecified vulnerability in rshd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2, when storing forwarded credentials, allows attackers to overwrite arbitrary files and change file ownership via unknown vectors. | [email protected] | 2.1 | 0.07% | 2006-02-08 | 2026-04-16 |
| CVE-2004-0371 | Heimdal 0.6.x before 0.6.1 and 0.5.x before 0.5.3 does not properly perform certain consistency checks for cross-realm requests, which allows remote attackers with control of a realm to impersonate others in the cross-realm trust path. | [email protected] | 5.0 | 0.93% | 2004-05-04 | 2026-04-16 |
| CVE-2002-1226 | Unknown vulnerabilities in Heimdal before 0.5 with unknown impact, possibly in the (1) kadmind and (2) kdc servers, may allow remote or local attackers to gain root or other access, but not via buffer overflows (CVE-2002-1225). | [email protected] | 10.0 | 0.42% | 2002-10-28 | 2026-04-16 |
| CVE-2002-1225 | Multiple buffer overflows in Heimdal before 0.5, possibly in both the (1) kadmind and (2) kdc servers, may allow remote attackers to gain root access. | [email protected] | 10.0 | 1.48% | 2002-10-28 | 2026-04-16 |
| CVE-2002-0754 | Kerberos 5 su (k5su) in FreeBSD 4.4 and earlier relies on the getlogin system call to determine if the user running k5su is root, which could allow a root-initiated process to regain its privileges after it has dropped them. | [email protected] | 7.2 | 0.15% | 2002-08-12 | 2026-04-16 |