Holes found on Kerberos
by Dave Nixon
The MIT developers of the Kerberos authentication system have issued patches for numerous grave security holes, which could let remote attackers acquire sensitive information, shut down a system or execute malevolent code.
The primary problem is with the Kerberos Key Distribution Centre (KDC) and involves the way the KDC handles incoming krb4 requests. The problem can be exploited to crash the KDC server, execute malicious code or disclose memory, according to MIT.
The next problem is in the way the KDC sends responses for krb4 requests, which can be exploited to divulge potentially sensitive stack memory via a specially crafted krb4 request.
Misuse for these first two bugs requires that krb4 support is enabled in the KDC; it is disabled by default in newer versions. These bugs affect Kerberos 5 versions 1.6.3 and earlier.
The third bug is in the Kerberos RPC library when handling open file descriptors. Under particular circumstances, an assailant might send an excessively large number of RPC connections, causing a memory corruption and allowing the execution of malicious code.
This bug affects Kerberos 5 versions 1.2.2 to 1.3 and 1.4 through 1.6.3, according to MIT.
Click here to discuss this: Security Forums
Related posts to "Holes found on Kerberos":
- Highly critical patches released for Kerberos 5-multiple vulnerabilities
- MIT Kerberos Consortium welcomes Microsoft as a founding sponsor
- Apple Plugs Security Holes In Mac OS
- Rift Caused By Malfunctioning Voting Machines
- Upgrade Your Software
Speak Your Mind
Tell us what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!
Previous: « Red Hat releases security code
Next: Microsoft acquires security company »
Visited 878 times, 2 so far today