Oval Definition:oval:org.mitre.oval:def:2139
Revision Date:2005-02-23Version:16
Title:Kerberos 5 ASN.1 Library DoS
Description:The asn1buf_skiptail function in the ASN.1 decoder library for MIT Kerberos 5 (krb5) 1.2.2 through 1.3.4 allows remote attackers to cause a denial of service (infinite loop) via a certain BER encoding.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0644
Platform(s):Sun Solaris 9
Product(s):Kerberos5
Definition Synopsis
  • Software section
  • Solaris 9 Installed
  • AND Kerberos 5 installed
  • AND NOT Patch 112908-15 or later installed
  • AND Configuration section
  • /etc/krb5/krb5.conf is configured with a kerberos domain
    • BACK