Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 443
Alerts This Week
Warning Icon 1 443

Gentoo: GLSA-202309-05 High: Kerberos 5 Remote Execution Threat

gentoo
Calendar Grey April 3, 2007
Dist Gentoo Esm H88
Identify flaws in the MIT Kerberos 5 protocol that facilitate unauthorized remote access. Immediate update recommended to enhance system integrity.
Multiple vulnerabilities in MIT Kerberos 5 could potentially result in unauthenticated remote root code execution.

Summary

Gentoo Linux Security Advisory GLSA 200704-02 https://security.gentoo.org/ Severity: High Title: MIT Kerberos 5: Arbitrary remote code execution Date: April 03, 2007 Bugs: #171889 ID: 200704-02

Synopsis ======= Multiple vulnerabilities in MIT Kerberos 5 could potentially result in unauthenticated remote root code execution.
Background ========= MIT Kerberos 5 is a suite of applications that implement the Kerberos network protocol.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 app-crypt/mit-krb5 < 1.5.2-r1 >= 1.5.2-r1
========== The Kerberos telnet daemon fails to properly handle usernames allowing unauthorized access to any account (CVE-2007-0956). The Kerber...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround