This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
APP:KERBEROS:GSS-ZERO-TOKEN
|
Severity |
Critical
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
APP
|
Keywords |
Kerberos Zero-Length GSS Token
|
Release Date |
2008/10/14
|
Update Number |
1291
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
APP: Kerberos Zero-Length GSS Token
This signature detects attempts to exploit a known vulnerability against Kerberos Administration Server (kadmind) version 5-1.6.1 and earlier. A successful attack can lead to arbitrary code execution.
Extended Description
MIT Kerberos 5 Administration Daemon ('kadmind') is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code with superuser privileges, completely compromising affected computers. Failed exploit attempts will likely result in denial-of-service conditions.
All 'kadmind' servers run on the master Kerberos server. Since the master server holds the KDC principal and policy database, an attack may not only compromise the affected computer, but could also compromise multiple hosts that use the server for authentication.
This issue also affects third-party applications using the affected RPC library.
Versions prior to 'kadmind' krb5-1.6.1 are vulnerable.
Affected Products
- Apple mac_os_x 10.3.9
- Apple mac_os_x 10.4.10
- Apple mac_os_x_server 10.3.9
- Apple mac_os_x_server 10.4.10
- Avaya aura_application_enablement_services 4.0
- Avaya message_networking MN 3.1
- Avaya message_networking
- Avaya messaging_storage_server MM3.0
- Debian linux 3.1.0
- Debian linux 3.1.0 Alpha
- Debian linux 3.1.0 Amd64
- Debian linux 3.1.0 Arm
- Debian linux 3.1.0 Hppa
- Debian linux 3.1.0 Ia-32
- Debian linux 3.1.0 Ia-64
- Debian linux 3.1.0 M68k
- Debian linux 3.1.0 Mips
- Debian linux 3.1.0 Mipsel
- Debian linux 3.1.0 Ppc
- Debian linux 3.1.0 S/390
- Debian linux 3.1.0 Sparc
- Debian linux 4.0
- Debian linux 4.0 Alpha
- Debian linux 4.0 Amd64
- Debian linux 4.0 Arm
- Debian linux 4.0 Hppa
- Debian linux 4.0 Ia-32
- Debian linux 4.0 Ia-64
- Debian linux 4.0 M68k
- Debian linux 4.0 Mips
- Debian linux 4.0 Mipsel
- Debian linux 4.0 Powerpc
- Debian linux 4.0 S/390
- Debian linux 4.0 Sparc
- Foresight_linux foresight_linux 1.1
- Gentoo linux
- Hp hp-ux B.11.11
- Hp hp-ux B.11.23
- Hp hp-ux B.11.31
- Mandriva corporate_server 3.0.0
- Mandriva corporate_server 3.0.0 X86 64
- Mandriva corporate_server 4.0
- Mandriva corporate_server 4.0.0 X86 64
- Mandriva linux_mandrake 2007.0
- Mandriva linux_mandrake 2007.0 X86 64
- Mandriva linux_mandrake 2007.1
- Mandriva linux_mandrake 2007.1 X86 64
- Mit kerberos_5 1.0.0
- Mit kerberos_5 1.0.6
- Mit kerberos_5 1.0.8
- Mit kerberos_5 1.1.0
- Mit kerberos_5 1.1.1
- Mit kerberos_5 1.2.0
- Mit kerberos_5 1.2.1
- Mit kerberos_5 1.2.2
- Mit kerberos_5 1.2.2 -Beta1
- Mit kerberos_5 1.2.3
- Mit kerberos_5 1.2.4
- Mit kerberos_5 1.2.5
- Mit kerberos_5 1.2.6
- Mit kerberos_5 1.2.7
- Mit kerberos_5 1.2.8
- Mit kerberos_5 1.3.0
- Mit kerberos_5 1.3.0 -Alpha1
- Mit kerberos_5 1.3.1
- Mit kerberos_5 1.3.2
- Mit kerberos_5 1.3.3
- Mit kerberos_5 1.3.4
- Mit kerberos_5 1.3.5
- Mit kerberos_5 1.3.6
- Mit kerberos_5 1.4.0
- Mit kerberos_5 1.4.1
- Mit kerberos_5 1.4.2
- Mit kerberos_5 1.4.3
- Mit kerberos_5 1.5.0
- Mit kerberos_5 1.5.1
- Mit kerberos_5 1.5.2
- Mit kerberos_5 1.5.3
- Mit kerberos_5 1.5.4
- Mit kerberos_5 1.6.0
- Mit kerberos_5 1.6.1
- Novell kdc_(key_distribution_center) 1.0
- Novell kdc_(key_distribution_center) 1.0.2
- Red_hat advanced_workstation_for_the_itanium_processor 2.1.0
- Red_hat arpwatch-2.1a11-1.i386.rpm Null
- Red_hat desktop 3.0.0
- Red_hat desktop 4.0.0
- Red_hat enterprise_linux 5 Server
- Red_hat enterprise_linux_as 2.1
- Red_hat enterprise_linux_as 3
- Red_hat enterprise_linux_as 4
- Red_hat enterprise_linux_desktop 5 Client
- Red_hat enterprise_linux_desktop_workstation 5 Client
- Red_hat enterprise_linux_es 2.1
- Red_hat enterprise_linux_es 3
- Red_hat enterprise_linux_es 4
- Red_hat enterprise_linux_ws 2.1
- Red_hat enterprise_linux_ws 3
- Red_hat enterprise_linux_ws 4
- Sgi propack 3.0.0 SP6
- Sun solaris 10 Sparc
- Sun solaris 10 X86
- Suse linux 10.0
- Suse linux 10.1
- Suse opensuse 10.2
- Suse suse_linux_enterprise_desktop 10
- Suse suse_linux_enterprise_sdk 10
- Suse suse_linux_enterprise_server 10
- Trustix secure_enterprise_linux 2.0.0
- Trustix secure_linux 2.2.0
- Trustix secure_linux 3.0.0
- Trustix secure_linux 3.0.5
- Turbolinux appliance_server 2.0
- Turbolinux home
- Turbolinux multimedia
- Turbolinux personal
- Turbolinux turbolinux 10 F...
- Turbolinux turbolinux_desktop 10.0.0
- Turbolinux turbolinux_server 10.0.0
- Turbolinux turbolinux_server 10.0.0 X64
- Turbolinux turbolinux_server 10.0.0 X86
- Turbolinux turbolinux_server 8.0.0
- Ubuntu ubuntu_linux 6.06 LTS Amd64
- Ubuntu ubuntu_linux 6.06 LTS I386
- Ubuntu ubuntu_linux 6.06 LTS Powerpc
- Ubuntu ubuntu_linux 6.06 LTS Sparc
- Ubuntu ubuntu_linux 6.10 Amd64
- Ubuntu ubuntu_linux 6.10 I386
- Ubuntu ubuntu_linux 6.10 Powerpc
- Ubuntu ubuntu_linux 6.10 Sparc
- Ubuntu ubuntu_linux 7.04 Amd64
- Ubuntu ubuntu_linux 7.04 I386
- Ubuntu ubuntu_linux 7.04 Powerpc
- Ubuntu ubuntu_linux 7.04 Sparc
- Vmware esx 2.1.3
- Vmware esx_server 2.0.2
- Vmware esx_server 2.0.2 Patch 1
- Vmware esx_server 2.0.2 Patch 2
- Vmware esx_server 2.0.2 Patch 4
- Vmware esx_server 2.0.2 Patch 5
- Vmware esx_server 2.1.3
- Vmware esx_server 2.1.3 Patch 1
- Vmware esx_server 2.1.3 Patch 2
- Vmware esx_server 2.1.3 Patch 5
- Vmware esx_server 2.5.3
- Vmware esx_server 2.5.3 Patch 2
- Vmware esx_server 2.5.3 Patch 4
- Vmware esx_server 2.5.3 Patch 5
- Vmware esx_server 2.5.3 Patch 6
- Vmware esx_server 2.5.3 Patch 7
- Vmware esx_server 2.5.3 Patch 8
- Vmware esx_server 2.5.4
- Vmware esx_server 2.5.4 Patch 1
- Vmware esx_server 2.5.4 Patch 3
- Vmware esx_server 2.5.4 Patch 5
- Vmware esx_server 3.0.0
- Vmware esx_server 3.0.1
- Vmware esx_server 3.0.2
References