CVE-2007-2443 (debian_linux, kerberos_5, ubuntu_linux)

Integer signedness error in the gssrpc__svcauth_unix function in svc_auth_unix.c in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a negative length value.

View Full Alert

CVE-2007-0956 (debian_linux, kerberos_5, ubuntu_linux)
The telnet daemon (telnetd) in MIT krb5 before 1.6.1 allows remote attackers to bypass authentication and gain system access via a username beginning with a '-' character, a similar issue…
CVE-2007-2442 (debian_linux, kerberos_5, ubuntu_linux)
The gssrpc__svcauth_gssapi function in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a zero-length RPC credential, which causes…
CVE-2007-0957 (debian_linux, kerberos_5, ubuntu_linux)
Stack-based buffer overflow in the krb5_klog_syslog function in the kadm5 library, as used by the Kerberos administration daemon (kadmind) and Key Distribution Center (KDC), in MIT krb5 before 1.6.1 allows…

410-897-9494
Receive RedZone Security Updates in Your InboxContact Us

CVE-2007-2443 (debian_linux, kerberos_5, ubuntu_linux)

Leave a Reply Cancel reply

Related Posts

Leave a Reply Cancel reply