APP: MIT Kerberos Denial of Service
This signature detects attempts to exploit a known vulnerability against MIT Kerberos. A successful attack can result in a denial-of-service condition.
Extended Description
MIT Kerberos is prone to a remote code-execution vulnerability in 'kadmind'. An attacker may exploit this issue to execute arbitrary code with superuser privileges. Failed attempts will cause the affected application to crash, denying service to legitimate users. A successful exploit will completely compromise affected computers. MIT Kerberos 5 1.7 and later are vulnerable. NOTE (April 13, 2011): This BID was originally titled 'MIT Kerberos kadmind Version String Processing Remote Denial Of Service Vulnerability', but has been renamed to better reflect the nature of the issue.
Affected Products
Debian linux
References
BugTraq: 47310
URL: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=621726 http://web.mit.edu/kerberos/www/
Short Name
APP:KERBEROS:KRB5-DOS
Severity
Minor
Recommended
False
Recommended Action
None
Category
APP
Keywords
Denial Kerberos MIT Service bid:47310 of
Release Date
06/01/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/88
False Positive
Unknown
Vendors
Red_hat
Suse
Gentoo
Debian
Ubuntu
Mandriva
Mit