This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
APP:KERBEROS:DBLFREE-2
|
Severity |
Minor
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
APP
|
Keywords |
Kerberos Heap Double Free (2)
|
Release Date |
2005/08/04
|
Update Number |
1213
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
APP: Kerberos Heap Double Free (2)
This signature detects attempts to exploit a known vulnerability in the Kerberos protocol. A successful attack can lead to remote arbitrary code execution. Note: this signature should not be utilized on a network running Kerberos 5 1.1 or higher.
Extended Description
MIT Kerberos 5 is prone to a remote double-free vulnerability. Remote attackers can trigger this issue prior to any authentication whatsoever. The issue exists in the 'revcauth_common()' helper function.
Because of the code path taken in the vulnerable function, exploitation may be hindered. However, attackers may presumably leverage this issue to execute arbitrary code in the context of the affected service.
Note that successful exploitation of this issue on a Kerberos Key Distribution Center (KDC) computer may result in the compromise of an entire Kerberos realm.
Affected Products
- Apple mac_os_x 10.4.2
- Apple mac_os_x_server 10.4.2
- Conectiva linux 10.0.0
- Conectiva linux 9.0.0
- Debian linux 3.0.0
- Debian linux 3.0.0 Alpha
- Debian linux 3.0.0 Arm
- Debian linux 3.0.0 Hppa
- Debian linux 3.0.0 Ia-32
- Debian linux 3.0.0 Ia-64
- Debian linux 3.0.0 M68k
- Debian linux 3.0.0 Mips
- Debian linux 3.0.0 Mipsel
- Debian linux 3.0.0 Ppc
- Debian linux 3.0.0 S/390
- Debian linux 3.0.0 Sparc
- Debian linux 3.1.0
- Debian linux 3.1.0 Alpha
- Debian linux 3.1.0 Amd64
- Debian linux 3.1.0 Arm
- Debian linux 3.1.0 Hppa
- Debian linux 3.1.0 Ia-32
- Debian linux 3.1.0 Ia-64
- Debian linux 3.1.0 M68k
- Debian linux 3.1.0 Mips
- Debian linux 3.1.0 Mipsel
- Debian linux 3.1.0 Ppc
- Debian linux 3.1.0 S/390
- Debian linux 3.1.0 Sparc
- Gentoo linux
- Hp hp-ux B.11.00
- Hp hp-ux B.11.11
- Hp hp-ux B.11.23
- Mandriva corporate_server 2.1.0
- Mandriva corporate_server 2.1.0 X86 64
- Mandriva corporate_server 3.0.0
- Mandriva corporate_server 3.0.0 X86 64
- Mandriva linux_mandrake 10.0.0
- Mandriva linux_mandrake 10.0.0 amd64
- Mandriva linux_mandrake 10.1.0
- Mandriva linux_mandrake 10.1.0 X86 64
- Mandriva linux_mandrake 10.2.0
- Mandriva linux_mandrake 10.2.0 X86 64
- Mandriva multi_network_firewall 2.0.0
- Mit kerberos_5 5.0.0 -1.0.X
- Mit kerberos_5 5.0.0 -1.1
- Mit kerberos_5 5.0.0 -1.1.1
- Mit kerberos_5 5.0.0 -1.2Beta1
- Mit kerberos_5 5.0.0 -1.2Beta2
- Mit kerberos_5 5.0.0 -1.3.3
- Mit kerberos_5 5.0.0 -1.3.4
- Mit kerberos_5 5.0.0 -1.3.5
- Mit kerberos_5 5.0.0 -1.3.6
- Mit kerberos_5 5.0.0 -1.4
- Mit kerberos_5 5.0.0 -1.4.1
- Red_hat advanced_workstation_for_the_itanium_processor 2.1.0
- Red_hat advanced_workstation_for_the_itanium_processor 2.1.0 IA64
- Red_hat desktop 3.0.0
- Red_hat enterprise_linux_as 2.1
- Red_hat enterprise_linux_as 2.1 IA64
- Red_hat enterprise_linux_as 3
- Red_hat enterprise_linux_es 2.1
- Red_hat enterprise_linux_es 2.1 IA64
- Red_hat enterprise_linux_es 3
- Red_hat enterprise_linux_ws 2.1
- Red_hat enterprise_linux_ws 2.1 IA64
- Red_hat enterprise_linux_ws 3
- Red_hat fedora Core3
- Red_hat fedora Core4
- Sgi propack 3.0.0 SP6
- Sun seam 1.0.0
- Sun solaris 10 Sparc
- Sun solaris 10 X86
- Sun solaris 8 Sparc
- Sun solaris 8 X86
- Sun solaris 9 Sparc
- Sun solaris 9 X86
- Sun solaris 9 X86 Update 2
- Suse linux_personal 9.3.0
- Suse linux_personal 9.3.0 X86 64
- Suse linux_professional 9.3.0
- Suse linux_professional 9.3.0 X86 64
- Trustix secure_enterprise_linux 2.0.0
- Trustix secure_linux 2.2.0
- Trustix secure_linux 3.0.0
- Turbolinux appliance_server 1.0.0 Hosting Edition
- Turbolinux appliance_server 1.0.0 Workgroup Edition
- Turbolinux home
- Turbolinux turbolinux_desktop 10.0.0
- Turbolinux turbolinux_server 10.0.0
- Turbolinux turbolinux_server 8.0.0
- Ubuntu ubuntu_linux 4.1.0 Ia32
- Ubuntu ubuntu_linux 4.1.0 Ia64
- Ubuntu ubuntu_linux 4.1.0 Ppc
- Ubuntu ubuntu_linux 5.0.0 4 Amd64
- Ubuntu ubuntu_linux 5.0.0 4 I386
- Ubuntu ubuntu_linux 5.0.0 4 Powerpc
References