Kerberos Key Distribution Center Denial of Service Vulnerability

A vulnerability has been discovered in Kerberos Key Distribution Center (KDC). It has been reported that a denial of service can be triggered through a malicious Ticket Granting Service request. An authenticated malicious attacker could exploit this issue remotely to cause to dereference a NULL pointer. This would result in the affected KDC service to crash. Multiple KDC services may also crash.

This issue has been reported to affect Kerberos Key Distribution Center versions prior to 1.2.5.


 

Privacy Statement
Copyright 2010, SecurityFocus