MIT Kerberos KDC LDAP File Descriptor Leak Denial Of Service Vulnerability

MIT Kerberos is prone to a remote denial-of-service vulnerability because it leaks file descriptors in a looping operation when processing certain LDAP requests.

To exploit this issue, an attacker sends a specially crafted request to a vulnerable KDC service.

Attackers can exploit this issue to crash the KDC service, resulting in a denial-of-service condition.


 

Privacy Statement
Copyright 2010, SecurityFocus