A heap-based buffer overflow vulnerability in hashcat v7.1.2's Kerberos hash parser allows attackers to cause denial of service or execute arbitrary code via crafted Kerberos hash files. The vulnerability occurs in module_hash_decode functions across multiple Kerberos-related modules where account_info_len is calculated from untrusted delimiter positions without proper validation before memcpy operations into fixed-size buffers. This represents a significant security risk for systems using the affected hashcat version for Kerberos hash processing.