MIT Kerberos Administration Daemon Free Pointers Remote Code Execution Vulnerability

MIT Kerberos 5 is prone to a remote code-execution vulnerability.

This issue occurs because of memory-management problems in the abstraction interface of the GSS-API implementation.

An attacker can exploit this issue to execute arbitrary code with superuser privileges, completely compromising affected computers. Failed exploit attempts will likely result in a denial-of-service conditions.

This issue also affects third-party applications using the affected API.


 

Privacy Statement
Copyright 2010, SecurityFocus