Debian Security Advisory DSA 520-1 (krb5) Network Vulnerability

Summary

The remote host is missing an update to krb5 announced via advisory DSA 520-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20520-1

Insight

In their advisory MITKRB5-SA-2004-001, the MIT Kerberos announced the existence of buffer overflow vulnerabilities in the krb5_aname_to_localname function. This function is only used if aname_to_localname is enabled in the configuration (this is not enabled by default). For the current stable distribution (woody), this problem has been fixed in version 1.2.4-5woody5. For the unstable distribution (sid), this problem has been fixed in version 1.3.3-2. We recommend that you update your krb5 package.

Severity

Classification

CVE CVE-2004-0523

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 075-1 (netkit-telnet-ssl)
Debian Security Advisory DSA 1031-1 (cacti)
Debian Security Advisory DSA 1038-1 (xzgv)
Debian Security Advisory DSA 1019-1 (koffice)
Debian Security Advisory DSA 033-1 (analog)

Take action and discover your vulnerabilities