Oval Definition:	oval:org.mitre.oval:def:2536
Revision Date: 2006-09-27 Version: 17 Title: Kerberos 5 KDC Heap Corruption Vulnerability Description: The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap (aka "buffer underrun"). Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2003-0082 Platform(s): Sun Solaris 8 Product(s): Kerberos5 Definition Synopsis Software section Solaris 8 or 9 installed Solaris 8 Installed OR Solaris 9 Installed AND Kerberos v5 (any SUNWkrbr/SUNWkrbu/SUNWkrbux) installed Kerberos v5 - Root (SUNWkrbr) installed OR Kerberos v5 - Usr (SUNWkrbu/SUNWkrbux) installed AND Patches 112237-09 and 112390-08 or later installed Patch 112237-09 or later installed AND Patch 112390-08 or later installed AND Patches 112925-03,112923-03,112921-02, and 112908-10 or later installed Patch 112925-03 or later installed AND Patch 112923-03 or later installed AND Patch 112921-02 or later installed AND Patch 112908-10 or later installed AND Configuration section /etc/krb5/krb5.conf is configured with a kerberos domain
BACK