7 matches found
CentOS Update for krb5 CESA-2008:0181-01 centos2 i386
Check for the Version of krb5 OpenVAS Vulnerability Test CentOS Update for krb5 CESA-2008:0181-01 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Kerberos < 1.6.4 vulnerability
The remote host is probably affected by the vulnerabilities described in CVE-2008-0062, CVE-2008-0063, CVE-2008-0947, CVE-2008-0948 Impact CVE-2008-0062: An unauthenticated remote attacker may cause a krb4-enabled KDC to crash, expose information, or execute arbitrary code. Successful exploitatio...
CVE-2008-0948
Buffer overflow in the RPC library lib/rpc/rpcdtablesize.c used by libgssrpc and kadmind in MIT Kerberos 5 krb5 1.2.2, and probably other versions before 1.3, when running on systems whose unistd.h does not define the FDSETSIZE macro, allows remote attackers to cause a denial of service crash and...
MITKRB5-SA-2008-002: array overrun in RPC library used by kadmin
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MITKRB5-SA-2008-002 MIT krb5 Security Advisory 2008-002 Original release: 2008-03-18 Last update: 2008-03-18 Topic: array overrun in RPC library used by kadmind CVE-2008-0947, CVE-2008-0948 VU374121 Use of high-numbered file descriptors in the RPC...
CVE-2008-0948
CVE-2008-0948 is described in Red Hat’s RHSA-2008:0181 as a vulnerability in the MIT Kerberos 5 RPC library where a buffer overflow in the RPC library (lib/rpc/rpc_dtablesize.c) can be triggered on systems where unistd.h does not define FD_SETSIZE. This could allow a remote attacker to crash the ...
openSUSE 10 Security Update : krb5 (krb5-5081)
This update fixes the following security bugs in krb5/krb5-server : - CVE-2008-0062: null/dangling pointer needs enabled krb4 support - CVE-2008-0063: possible operations on uninitialized buffer content/information leak needs enabled krb4 support - CVE-2008-0947/CVE-2008-0948: out-of-bound array...
CentOS 3 : krb5 (CESA-2008:0181)
Updated krb5 packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 and 3. This update has been rated as having critical security impact by the Red Hat Security Response Team. Kerberos is a network authentication system which allows clients and servers to...