Oval Definition:
oval:org.mitre.oval:def:3322
Revision Date
:
2005-02-23
Version
:
16
Title
:
Kerberos 5 Double-free Vulnerability in krb5_rd_cred Function
Description
:
Double free vulnerability in the krb5_rd_cred function for MIT Kerberos 5 (krb5) 1.3.1 and earlier may allow local users to execute arbitrary code.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2004-0643
Platform(s)
:
Sun Solaris 9
Product(s)
:
Kerberos5
Definition Synopsis
Software section
Solaris 9 Installed
AND
Kerberos 5 installed
AND
NOT
Patch 112908-15 or later installed
AND
Configuration section
/etc/krb5/krb5.conf is configured with a kerberos domain
BACK