Summary
Ubuntu Update for Linux kernel vulnerabilities USN-511-1
Solution
Please Install the Updated Packages.
Insight
It was discovered that the libraries handling RPCSEC_GSS did not correctly validate the size of certain packet structures. An unauthenticated remote user could send a specially crafted request and execute arbitrary code with root privileges.
Affected
krb5, librpcsecgss vulnerability on Ubuntu 6.06 LTS , Ubuntu 6.10 ,
Ubuntu 7.04
Severity
Classification
-
CVE CVE-2007-3999 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities