Lucene search
Gentoo FoundationGLSA-201201-14HistoryJan 23, 2012 - 12:00 a.m.
MIT Kerberos 5 Applications: Multiple vulnerabilities
2012-01-2300:00:00
Gentoo Foundation
security.gentoo.org
20
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.968 High
EPSS
Percentile
99.7%
Background
A suite of applications that implement the Kerberos 5 network protocol from MIT.
Description
Multiple vulnerabilities have been discovered in MIT Kerberos 5 Applications:
- An error in the FTP daemon prevents it from dropping its initial effective group identifier (CVE-2011-1526).
- A boundary error in the telnet daemon and client could cause a buffer overflow (CVE-2011-4862).
Impact
An unauthenticated remote attacker may be able to execute arbitrary code with the privileges of the user running the telnet daemon or client. Furthermore, an authenticated remote attacker may be able to read or write files owned by the same group as the effective group of the FTP daemon.
Workaround
There is no known workaround at this time.
Resolution
All MIT Kerberos 5 Applications users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose
">=app-crypt/mit-krb5-appl-1.0.2-r1"
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Gentoo | any | all | app-crypt/mit-krb5-appl | < 1.0.2-r1 | UNKNOWN |
Related
nessus
nessus
SuSE 11.1 Security Update : Kerberos 5 (SAT Patch Number 5594)
2012-01-03 00:00:00
openSUSE Security Update : krb5-appl (openSUSE-SU-2012:0019-1)
2014-06-13 00:00:00
SuSE 10 Security Update : Kerberos 5 (ZYPP Patch Number 7899)
2012-01-03 00:00:00
suse
suse
Security update for Kerberos 5 (important)
2012-01-05 12:36:16
Security update for Kerberos 5 (important)
2012-01-05 12:08:41
krb5-appl: Fixed remote buffer overflow in ktelnetd (important)
2012-01-05 12:08:43
openvas
openvas
Fedora Update for krb5-appl FEDORA-2011-17492
2012-01-09 00:00:00
openSUSE: Security Advisory for krb5-appl (openSUSE-SU-2012:0051-1)
2012-08-02 00:00:00
SuSE Update for krb5-appl openSUSE-SU-2012:0051-1 (krb5-appl)
2012-08-02 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: krb5-appl-1.0.1-8.fc15
2012-01-05 20:57:26
[SECURITY] Fedora 15 Update: krb5-appl-1.0.1-7.fc15
2011-07-15 01:22:19
[SECURITY] Fedora 14 Update: krb5-appl-1.0.1-4.fc14
2011-07-15 01:26:36
oraclelinux
oraclelinux
krb5 security and bug fix update
2012-03-01 00:00:00
krb5-appl security update
2011-12-27 00:00:00
krb5-appl security update
2011-07-05 00:00:00
saint
saint
Telnetd Encryption Key ID Code Execution
2012-02-11 00:00:00
Telnetd Encryption Key ID Code Execution
2012-02-11 00:00:00
Telnetd Encryption Key ID Code Execution
2012-02-11 00:00:00
packetstorm
packetstorm
FreeBSD telnetd Remote Root
2012-01-16 00:00:00
Linux BSD-derived Telnet Service Encyption Key ID Buffer Overflow
2011-12-28 00:00:00
FreeBSD Telnet Service Encyption Key ID Buffer Overflow
2011-12-28 00:00:00
seebug
seebug
FreeBSD 'telnetd'守护进程远程缓冲区溢出漏洞
2011-12-26 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:05:32
Privilege Escalation
2020-04-10 01:05:25
prion
prion
Buffer overflow
2011-12-25 01:55:00
Design/Logic Flaw
2011-07-11 20:55:00
redhat
redhat
(RHSA-2011:1851) Critical: krb5 security update
2011-12-27 00:00:00
(RHSA-2011:1853) Critical: krb5 security update
2011-12-28 00:00:00
(RHSA-2011:1852) Critical: krb5-appl security update
2011-12-27 00:00:00
zdt
zdt
Cisco Ironport WSA telnetd Remote Code Execution Vulnerability
2014-10-24 00:00:00
securityvulns
securityvulns
MITKRB5-SA-2011-008 buffer overflow in telnetd [CVE-2011-4862]
2012-01-02 00:00:00
MIT / FreeBSD / Cisco telnetd buffer overflow
2012-01-30 00:00:00
FreeBSD Security Advisory FreeBSD-SA-11:08.telnetd
2012-01-02 00:00:00
nvd
nvd
CVE-2011-4862
2011-12-25 01:55:02
CVE-2011-1526
2011-07-11 20:55:01
cve
cve
CVE-2011-4862
2011-12-25 01:55:02
CVE-2011-1526
2011-07-11 20:55:01
gentoo
gentoo
Heimdal: Arbitrary code execution
2012-02-22 00:00:00
debian
debian
[SECURITY] [DSA 2373-1] inetutils security update
2011-12-25 17:15:34
[SECURITY] [DSA 2375-1] krb5. krb5-appl security update
2011-12-26 13:18:10
[SECURITY] [DSA 2283-1] krb5-appl security update
2011-07-25 11:53:06
ubuntucve
ubuntucve
CVE-2011-4862
2011-12-25 00:00:00
CVE-2011-1526
2011-07-11 00:00:00
cvelist
cvelist
CVE-2011-1526
2011-07-11 20:00:00
CVE-2011-4862
2011-12-25 01:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
Security fix for the ALT Linux 8 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
Security fix for the ALT Linux 7 package krb5 version 1.6.3-alt13
2011-07-06 00:00:00
freebsd
freebsd
krb5-appl -- telnetd code execution vulnerability
2011-12-23 00:00:00
centos
centos
krb5 security update
2011-12-27 20:44:52
krb5 security update
2011-12-27 21:11:42
debiancve
debiancve
CVE-2011-4862
2011-12-25 01:55:02
freebsd_advisory
freebsd_advisory
FreeBSD-SA-11:08.telnetd
2011-12-23 00:00:00
checkpoint_advisories
checkpoint_advisories
Multiple Vendors BSD telnetd Encryption Key Buffer Overflow (CVE-2011-4862)
2012-05-14 00:00:00
cisco
cisco
Cisco IronPort Appliances Telnet Remote Code Execution Vulnerability
2012-01-26 17:00:00
vmware
vmware
VMware ESXi and ESX address several security issues
2012-03-29 00:00:00
VMware ESXi and ESX address several security issues
2012-03-29 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.968 High
EPSS
Percentile
99.7%
Related for GLSA-201201-14