MIT Kerberos 5 KAdminD Server Stack Buffer Overflow Vulnerability
BID:23285
Info
MIT Kerberos 5 KAdminD Server Stack Buffer Overflow Vulnerability
| Bugtraq ID: | 23285 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0957 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 03 2007 12:00AM |
| Updated: | Mar 19 2015 09:10AM |
| Credit: | The discoverer of this vulnerability wishes to remain anonymous. |
| Vulnerable: |
Ubuntu Ubuntu Linux 5.10 sparc Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 6.10 sparc Ubuntu Ubuntu Linux 6.10 powerpc Ubuntu Ubuntu Linux 6.10 i386 Ubuntu Ubuntu Linux 6.10 amd64 Ubuntu Ubuntu Linux 6.06 LTS sparc Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 Turbolinux Turbolinux Server 10.0 Turbolinux Turbolinux Server 8.0 Turbolinux Turbolinux Server 10.0.0 x64 Turbolinux Turbolinux Desktop 10.0 Turbolinux Turbolinux 10 F... TurboLinux Personal TurboLinux Multimedia Turbolinux Home Turbolinux Appliance Server 2.0 Trustix Secure Linux 3.0.5 Trustix Secure Linux 3.0 Trustix Secure Linux 2.2 Trustix Operating System Enterprise Server 2.0 SuSE SUSE Linux Enterprise Server 10 SuSE SUSE Linux Enterprise Desktop 10 Sun Solaris 9_x86 Sun Solaris 9_sparc Sun Solaris 8_x86 Sun Solaris 8_sparc Sun Solaris 10_x86 SGI ProPack 3.0 SP6 S.u.S.E. openSUSE 10.2 S.u.S.E. Linux 9.3 x86-64 S.u.S.E. Linux 9.3 x86 S.u.S.E. Linux 10.1 x86-64 S.u.S.E. Linux 10.1 x86 S.u.S.E. Linux 10.1 ppc S.u.S.E. Linux 10.0 x86-64 S.u.S.E. Linux 10.0 x86 S.u.S.E. Linux 10.0 ppc rPath rPath Linux 1 RedHat Linux Advanced Work Station 2.1 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux WS 2.1 RedHat Enterprise Linux ES 4 RedHat Enterprise Linux ES 3 RedHat Enterprise Linux ES 2.1 RedHat Desktop 4.0 RedHat Desktop 3.0 Red Hat Enterprise Linux Desktop 5 client Red Hat Enterprise Linux AS 4 Red Hat Enterprise Linux AS 3 Red Hat Enterprise Linux AS 2.1 Pardus Linux 2007.1 Novell KDC (Key Distribution Center) 1.0 MIT Kerberos 5 5.0 -1.4.1 MIT Kerberos 5 5.0 -1.4 MIT Kerberos 5 5.0 -1.3.6 MIT Kerberos 5 5.0 -1.3.5 MIT Kerberos 5 5.0 -1.3.4 MIT Kerberos 5 5.0 -1.3.3 MIT Kerberos 5 5.0 -1.2beta2 MIT Kerberos 5 5.0 -1.2beta1 MIT Kerberos 5 5.0 -1.1.1 MIT Kerberos 5 5.0 -1.1 MIT Kerberos 5 5.0 -1.0.x MIT Kerberos 5 1.6 MIT Kerberos 5 1.5.1 MIT Kerberos 5 1.5 MIT Kerberos 5 1.4.3 MIT Kerberos 5 1.4.2 MIT Kerberos 5 1.4.1 MIT Kerberos 5 1.4 MIT Kerberos 5 1.3.6 MIT Kerberos 5 1.3.5 MIT Kerberos 5 1.3.4 MIT Kerberos 5 1.3.3 MIT Kerberos 5 1.3.2 MIT Kerberos 5 1.3.1 MIT Kerberos 5 1.3 -alpha1 MIT Kerberos 5 1.3 MIT Kerberos 5 1.2.8 MIT Kerberos 5 1.2.7 MIT Kerberos 5 1.2.6 MIT Kerberos 5 1.2.5 MIT Kerberos 5 1.2.4 MIT Kerberos 5 1.2.3 MIT Kerberos 5 1.2.2 -beta1 MIT Kerberos 5 1.2.2 MIT Kerberos 5 1.2.1 MIT Kerberos 5 1.2 MIT Kerberos 5 1.1.1 MIT Kerberos 5 1.1 MIT Kerberos 5 1.0.8 MIT Kerberos 5 1.0.6 MIT Kerberos 5 1.0 Mandriva Linux Mandrake 2006.0 x86_64 Mandriva Linux Mandrake 2006.0 Mandriva Linux Mandrake 2007.1 x86_64 Mandriva Linux Mandrake 2007.1 Mandriva Linux Mandrake 2007.0 x86_64 Mandriva Linux Mandrake 2007.0 MandrakeSoft Multi Network Firewall 2.0 MandrakeSoft Corporate Server 4.0 x86_64 MandrakeSoft Corporate Server 3.0 x86_64 MandrakeSoft Corporate Server 3.0 MandrakeSoft Corporate Server 4.0 Gentoo Linux Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 Debian Linux 4.0 sparc Debian Linux 4.0 s/390 Debian Linux 4.0 powerpc Debian Linux 4.0 mipsel Debian Linux 4.0 mips Debian Linux 4.0 m68k Debian Linux 4.0 ia-64 Debian Linux 4.0 ia-32 Debian Linux 4.0 hppa Debian Linux 4.0 arm Debian Linux 4.0 amd64 Debian Linux 4.0 alpha Debian Linux 4.0 Apple Mac OS X Server 10.4.9 Apple Mac OS X Server 10.3.9 Apple Mac OS X 10.4.9 Apple Mac OS X 10.3.9 |
| Not Vulnerable: |
Novell KDC (Key Distribution Center) 1.0.2 MIT Kerberos 5 1.6.1 |
Discussion
MIT Kerberos 5 KAdminD Server Stack Buffer Overflow Vulnerability
Kerberos 5 kadmind (Kerberos Administration Daemon) server is prone to a stack-based buffer-overflow vulnerability because the software fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized buffer.
An attacker can exploit this issue to execute arbitrary code with administrative privileges. A successful attack can result in the complete compromise of the application. Failed attempts will likely result in denial-of-service conditions.
All kadmind servers run on the master Kerberos server. Since the master server holds the KDC principal and policy database, an attack may not only compromise the affected computer, but could also compromise multiple hosts that use the server for authentication.
Kerberos 5 kadmind 1.6 and prior versions are vulnerable.
Kerberos 5 kadmind (Kerberos Administration Daemon) server is prone to a stack-based buffer-overflow vulnerability because the software fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized buffer.
An attacker can exploit this issue to execute arbitrary code with administrative privileges. A successful attack can result in the complete compromise of the application. Failed attempts will likely result in denial-of-service conditions.
All kadmind servers run on the master Kerberos server. Since the master server holds the KDC principal and policy database, an attack may not only compromise the affected computer, but could also compromise multiple hosts that use the server for authentication.
Kerberos 5 kadmind 1.6 and prior versions are vulnerable.
Exploit / POC
MIT Kerberos 5 KAdminD Server Stack Buffer Overflow Vulnerability
The following exploit is available:
The following exploit is available:
Solution / Fix
MIT Kerberos 5 KAdminD Server Stack Buffer Overflow Vulnerability
Solution:
The vendor has released fixes to address this issue. Please see the references for more information.
Sun Solaris 8_sparc
MIT Kerberos 5 1.3.6
MIT Kerberos 5 1.4.1
MIT Kerberos 5 1.5.1
Turbolinux Turbolinux Server 10.0
Apple Mac OS X Server 10.3.9
Apple Mac OS X 10.3.9
Apple Mac OS X Server 10.4.9
SGI ProPack 3.0 SP6
Trustix Secure Linux 3.0
Trustix Secure Linux 3.0.5
Solution:
The vendor has released fixes to address this issue. Please see the references for more information.
Sun Solaris 8_sparc
-
Sun T109223-10
http://sunsolve.sun.com/tpatches
MIT Kerberos 5 1.3.6
-
Ubuntu krb5-admin-server_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-serv er_1.3.6-4ubuntu0.2_amd64.deb -
Ubuntu krb5-admin-server_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-serv er_1.3.6-4ubuntu0.2_i386.deb -
Ubuntu krb5-admin-server_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-serv er_1.3.6-4ubuntu0.2_powerpc.deb -
Ubuntu krb5-admin-server_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-admin-serv er_1.3.6-4ubuntu0.2_sparc.deb -
Ubuntu krb5-clients_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1. 3.6-4ubuntu0.2_amd64.deb -
Ubuntu krb5-clients_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1. 3.6-4ubuntu0.2_i386.deb -
Ubuntu krb5-clients_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1. 3.6-4ubuntu0.2_powerpc.deb -
Ubuntu krb5-clients_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-clients_1. 3.6-4ubuntu0.2_sparc.deb -
Ubuntu krb5-doc_1.3.6-4ubuntu0.2_all.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/krb5-doc_1.3.6-4ubu ntu0.2_all.deb -
Ubuntu krb5-ftpd_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.3.6 -4ubuntu0.2_amd64.deb -
Ubuntu krb5-ftpd_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.3.6 -4ubuntu0.2_i386.deb -
Ubuntu krb5-ftpd_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.3.6 -4ubuntu0.2_powerpc.deb -
Ubuntu krb5-ftpd_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-ftpd_1.3.6 -4ubuntu0.2_sparc.deb -
Ubuntu krb5-kdc_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.3.6- 4ubuntu0.2_amd64.deb -
Ubuntu krb5-kdc_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.3.6- 4ubuntu0.2_i386.deb -
Ubuntu krb5-kdc_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.3.6- 4ubuntu0.2_powerpc.deb -
Ubuntu krb5-kdc_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-kdc_1.3.6- 4ubuntu0.2_sparc.deb -
Ubuntu krb5-rsh-server_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server _1.3.6-4ubuntu0.2_amd64.deb -
Ubuntu krb5-rsh-server_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server _1.3.6-4ubuntu0.2_i386.deb -
Ubuntu krb5-rsh-server_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server _1.3.6-4ubuntu0.2_powerpc.deb -
Ubuntu krb5-rsh-server_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-rsh-server _1.3.6-4ubuntu0.2_sparc.deb -
Ubuntu krb5-telnetd_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1. 3.6-4ubuntu0.2_amd64.deb -
Ubuntu krb5-telnetd_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1. 3.6-4ubuntu0.2_i386.deb -
Ubuntu krb5-telnetd_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1. 3.6-4ubuntu0.2_powerpc.deb -
Ubuntu krb5-telnetd_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-telnetd_1. 3.6-4ubuntu0.2_sparc.deb -
Ubuntu krb5-user_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.3.6 -4ubuntu0.2_amd64.deb -
Ubuntu krb5-user_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.3.6 -4ubuntu0.2_i386.deb -
Ubuntu krb5-user_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.3.6 -4ubuntu0.2_powerpc.deb -
Ubuntu krb5-user_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/universe/k/krb5/krb5-user_1.3.6 -4ubuntu0.2_sparc.deb -
Ubuntu libkadm55_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.3.6-4ub untu0.2_amd64.deb -
Ubuntu libkadm55_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.3.6-4ub untu0.2_i386.deb -
Ubuntu libkadm55_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.3.6-4ub untu0.2_powerpc.deb -
Ubuntu libkadm55_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkadm55_1.3.6-4ub untu0.2_sparc.deb -
Ubuntu libkrb5-dev_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.3.6-4 ubuntu0.2_amd64.deb -
Ubuntu libkrb5-dev_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.3.6-4 ubuntu0.2_i386.deb -
Ubuntu libkrb5-dev_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.3.6-4 ubuntu0.2_powerpc.deb -
Ubuntu libkrb5-dev_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb5-dev_1.3.6-4 ubuntu0.2_sparc.deb -
Ubuntu libkrb53_1.3.6-4ubuntu0.2_amd64.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.3.6-4ubu ntu0.2_amd64.deb -
Ubuntu libkrb53_1.3.6-4ubuntu0.2_i386.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.3.6-4ubu ntu0.2_i386.deb -
Ubuntu libkrb53_1.3.6-4ubuntu0.2_powerpc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.3.6-4ubu ntu0.2_powerpc.deb -
Ubuntu libkrb53_1.3.6-4ubuntu0.2_sparc.deb
Ubuntu 5.10:
http://security.ubuntu.com/ubuntu/pool/main/k/krb5/libkrb53_1.3.6-4ubu ntu0.2_sparc.deb
MIT Kerberos 5 1.4.1
-
SuSE krb5-1.4-16.9.x86_64.rpm
SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/krb5-1.4-16.9.x 86_64.rpm -
SuSE krb5-1.4.1-5.5.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/krb5-1.4.1-5.5.i 586.rpm -
SuSE krb5-1.4.1-5.5.x86_64.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/krb5-1.4.1-5.5 .x86_64.rpm -
SuSE krb5-1.4.3-19.10.3.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/krb5-1.4.3-19.10.3.i5 86.rpm -
SuSE krb5-32bit-1.4.1-5.5.x86_64.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/krb5-32bit-1.4 .1-5.5.x86_64.rpm -
SuSE krb5-32bit-9.3-7.3.x86_64.rpm
SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/krb5-32bit-9.3- 7.3.x86_64.rpm -
SuSE krb5-apps-servers-1.4.1-5.5.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/krb5-apps-server s-1.4.1-5.5.i586.rpm -
SuSE krb5-apps-servers-1.4.1-5.5.x86_64.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/krb5-apps-serv ers-1.4.1-5.5.x86_64.rpm -
SuSE krb5-apps-servers-1.4.3-19.10.3.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/krb5-apps-servers-1.4 .3-19.10.3.i586.rpm -
SuSE krb5-devel-1.4.1-5.5.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/krb5-devel-1.4.1 -5.5.i586.rpm -
SuSE krb5-devel-1.4.1-5.5.x86_64.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/krb5-devel-1.4 .1-5.5.x86_64.rpm -
SuSE krb5-devel-1.4.3-19.10.3.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/krb5-devel-1.4.3-19.1 0.3.i586.rpm -
SuSE krb5-devel-32bit-1.4.1-5.5.x86_64.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/krb5-devel-32b it-1.4.1-5.5.x86_64.rpm -
SuSE krb5-server-1.4.1-5.5.i586.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/i586/krb5-server-1.4. 1-5.5.i586.rpm -
SuSE krb5-server-1.4.1-5.5.x86_64.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/x86_64/krb5-server-1. 4.1-5.5.x86_64.rpm -
SuSE krb5-server-1.4.3-19.10.3.i586.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/i586/krb5-server-1.4.3-19. 10.3.i586.rpm
MIT Kerberos 5 1.5.1
-
SuSE krb5-1.4.3-19.10.3.x86_64.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/x86_64/krb5-1.4.3-19.10.3. x86_64.rpm -
SuSE krb5-1.5.1-23.4.i586.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/krb5-1.5.1-23.4.i586. rpm -
SuSE krb5-1.5.1-23.4.x86_64.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/krb5-1.5.1-23.4.x86 _64.rpm -
SuSE krb5-32bit-1.5.1-23.4.x86_64.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/krb5-32bit-1.5.1-23 .4.x86_64.rpm -
SuSE krb5-apps-servers-1.5.1-23.4.i586.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/krb5-apps-servers-1.5 .1-23.4.i586.rpm -
SuSE krb5-apps-servers-1.5.1-23.4.x86_64.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/krb5-apps-servers-1 .5.1-23.4.x86_64.rpm -
SuSE krb5-devel-1.5.1-23.4.i586.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/krb5-devel-1.5.1-23.4 .i586.rpm -
SuSE krb5-devel-1.5.1-23.4.x86_64.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/krb5-devel-1.5.1-23 .4.x86_64.rpm -
SuSE krb5-devel-32bit-1.5.1-23.4.x86_64.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/krb5-devel-32bit-1. 5.1-23.4.x86_64.rpm -
SuSE krb5-server-1.5.1-23.4.i586.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/i586/krb5-server-1.5.1-23. 4.i586.rpm -
SuSE krb5-server-1.5.1-23.4.x86_64.rpm
openSUSE 10.2:
ftp://ftp.suse.com/pub/suse/update/10.2/rpm/x86_64/krb5-server-1.5.1-2 3.4.x86_64.rpm
Turbolinux Turbolinux Server 10.0
-
Turbolinux krb5-debug-1.3.4-22.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/upd ates/RPMS/krb5-workstation-1.3.4-22.x86_64.rpm -
Turbolinux krb5-devel-1.2.5-21.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/krb5-devel-1.2.5-21.i586.rpm -
Turbolinux krb5-devel-1.2.5-21.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Server/8/upd ates/RPMS/krb5-devel-1.2.5-21.i586.rpm -
Turbolinux krb5-devel-1.3.4-22.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/upd ates/RPMS/krb5-workstation-1.3.4-22.x86_64.rpm -
Turbolinux krb5-libs-1.2.5-21.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/krb5-libs-1.2.5-21.i586.rpm -
Turbolinux krb5-libs-1.3.4-22.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/upd ates/RPMS/krb5-workstation-1.3.4-22.x86_64.rpm -
Turbolinux krb5-server-1.2.5-21.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/krb5-server-1.2.5-21.i586.rpm -
Turbolinux krb5-server-1.3.4-22.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/upd ates/RPMS/krb5-workstation-1.3.4-22.x86_64.rpm -
Turbolinux krb5-workstation-1.2.5-21.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/ia32/Desktop/10/u pdates/RPMS/krb5-workstation-1.2.5-21.i586.rpm -
Turbolinux krb5-workstation-1.3.4-22.i586.rpm
ftp://ftp.turbolinux.co.jp/pub/TurboLinux/TurboLinux/x64/Server/10/upd ates/RPMS/krb5-workstation-1.3.4-22.x86_64.rpm
Apple Mac OS X Server 10.3.9
-
Apple Security Update 2007-004 (Universal)
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13659&cat= 1&platform=osx&method=sa/SecUpd2007-004Univ.dmg
Apple Mac OS X 10.3.9
-
Apple Security Update 2007-004 (10.3.9 Server)
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13655&cat= 1&platform=osx&method=sa/SecUpdSrvr2007-004Pan.dmg -
Apple Security Update 2007-004 (10.3.9 Client)
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13657&cat= 1&platform=osx&method=sa/SecUpd2007-004Pan.dmg -
Apple Security Update 2007-004 (Universal)
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13659&cat= 1&platform=osx&method=sa/SecUpd2007-004Univ.dmg
Apple Mac OS X Server 10.4.9
-
Apple Security Update 2007-004 (Universal)
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=13659&cat= 1&platform=osx&method=sa/SecUpd2007-004Univ.dmg
SGI ProPack 3.0 SP6
-
SGI Patch 10389
http://support.sgi.com/
Trustix Secure Linux 3.0
-
Trustix file-devel-4.13-4tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix imagemagick-6.3.3.5-1tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix imagemagick-devel-6.3.3.5-1tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kerberos5-1.4.1-8tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kerberos5-devel-1.4.1-8tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kerberos5-libs-1.4.1-8tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix perl-image-magick-6.3.3.5-1tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates
Trustix Secure Linux 3.0.5
-
Trustix file-4.17-3tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix file-devel-4.13-4tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix file-devel-4.17-3tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix imagemagick-6.3.3.5-1tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix imagemagick-devel-6.3.3.5-1tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kerberos5-1.4.3-4tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kerberos5-devel-1.4.3-4tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix kerberos5-libs-1.4.3-4tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates -
Trustix perl-image-magick-6.3.3.5-1tr.i586.rpm
Trustix Secure Linux 3.0.5
ftp://ftp.trustix.org/pub/trustix/updates
References
MIT Kerberos 5 KAdminD Server Stack Buffer Overflow Vulnerability
References:
References:
- Multiple Vendor Kerberos kadmind Buffer Overflow Vulnerability (iDefense Labs)
- MITKRB5-SA-2007-002: KDC, kadmind stack overflow in krb5_klog_syslog [CVE-2007-0 (Tom Yu)
- MIT krb5 Security Advisory 2007-002 (MIT)
- RHSA-2007:0095-4 - krb5 security update (Red Hat)
- Security Update: KDC and kadmin stack overflow in krb5_klog_syslog (Novell)
- Sun Alert ID: 102930 Security Vulnerability in the Kerberos kadm5 Library May Al (Sun)
- VU#704024 - MIT Kerberos 5 administration daemon stack overflow in krb5_klog_sys (US-CERT)