Kerberos vulnerability

ID USN-881-1
Type ubuntu
Reporter Ubuntu
Modified 2010-01-12T00:00:00


It was discovered that Kerberos did not correctly handle invalid AES blocks. An unauthenticated remote attacker could send specially crafted traffic that would crash the KDC service, leading to a denial of service, or possibly execute arbitrary code with root privileges.