Lucene search
SuseSUSE-SA:2006:010HistoryFeb 24, 2006 - 1:58 p.m.
remote denial of service in heimdal
2006-02-2413:58:32
lists.opensuse.org
8
0.855 High
EPSS
Percentile
98.2%
Heimdal is a Kerberos 5 implementation from the Royal Institut of Techno- logy in Stockholm. This update fixes two bugs in heimdal. The first one occurs in the rsh daemon and allows an authenticated malicious user to gain ownership of files that belong to other users (CVE-2006-0582). The second bug affects the telnet server and can be used to crash the server before authentication happens. It is even a denial-of-service attack when the telnetd is started via inetd because inetd stops forking the daemon when it forks too fast (CVE-2006-0677).
Solution
There is no work-around known.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 9.2 | x86_64 | heimdal-lib-32bit | < 9.2-200602211039 | heimdal-lib-32bit-9.2-200602211039.x86_64.rpm |
| openSUSE | 9.2 | x86_64 | heimdal | < 0.6.2-8.6 | heimdal-0.6.2-8.6.x86_64.rpm |
| openSUSE | 9.1 | i586 | heimdal-devel | < 0.6.1rc3-55.21 | heimdal-devel-0.6.1rc3-55.21.i586.rpm |
| openSUSE | 9.2 | i586 | heimdal-lib | < 0.6.2-8.6 | heimdal-lib-0.6.2-8.6.i586.rpm |
| openSUSE | 9.2 | i586 | heimdal | < 0.6.2-8.6 | heimdal-0.6.2-8.6.i586.rpm |
| openSUSE | 9.1 | x86_64 | heimdal-devel | < 0.6.1rc3-55.21 | heimdal-devel-0.6.1rc3-55.21.x86_64.rpm |
| openSUSE | 9.1 | i586 | heimdal-lib-32bit | < 9.1-200602210606 | heimdal-lib-32bit-9.1-200602210606.i586.rpm |
| openSUSE | 9.1 | x86_64 | heimdal | < 0.6.1rc3-55.21 | heimdal-0.6.1rc3-55.21.x86_64.rpm |
| openSUSE | 9.1 | i586 | heimdal-lib | < 0.6.1rc3-55.21 | heimdal-lib-0.6.1rc3-55.21.i586.rpm |
| openSUSE | 9.1 | x86_64 | heimdal-lib | < 0.6.1rc3-55.21 | heimdal-lib-0.6.1rc3-55.21.x86_64.rpm |
Related
openvas
openvas
Debian Security Advisory DSA 977-1 (heimdal)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-977-1)
2008-01-17 00:00:00
SLES9: Security update for heimdal
2009-10-10 00:00:00
nessus
nessus
Debian DSA-977-1 : heimdal - several vulnerabilities
2006-10-14 00:00:00
SUSE-SA:2006:011: heimdal
2006-03-06 00:00:00
debian
debian
[SECURITY] [DSA 977-1] New heimdal packages fix several vulnerabilities
2006-02-16 07:16:50
[SECURITY] [DSA 977-1] New heimdal packages fix several vulnerabilities
2006-02-16 07:16:50
suse
suse
remote denial of service in heimdal
2006-02-24 14:44:34
osv
osv
heimdal - several
2006-02-16 00:00:00
freebsd
freebsd
heimdal -- Multiple vulnerabilities
2006-02-06 00:00:00
cve
cve
prion
prion
Design/Logic Flaw
2006-02-14 11:06:00
Stack overflow
2006-02-27 20:06:00
Code injection
2006-02-08 01:02:00
debiancve
debiancve
CVE-2006-0677
2006-02-14 11:06:00
CVE-2006-0582
2006-02-08 01:02:00
ubuntucve
ubuntucve
CVE-2006-0677
2006-02-14 00:00:00
CVE-2006-0582
2006-02-08 00:00:00
ubuntu
ubuntu
heimdal vulnerability
2006-02-18 00:00:00
Heimdal vulnerability
2006-02-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Novell CASA PAM Module Stack Buffer Overflow - Ver2 (CVE-2006-0736)
2015-05-18 00:00:00
securityvulns
securityvulns
gentoo
gentoo
Heimdal: rshd privilege escalation
2006-03-17 00:00:00