Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: Ubuntu Local Security Checks --> Category: infos

USN253-1 : heimdal vulnerability Vulnerability Scan


Vulnerability Scan Summary
heimdal vulnerability

Detailed Explanation for this Vulnerability Test

Synopsis :

These remote packages are missing security patches :
- heimdal-clients
- heimdal-clients-x
- heimdal-dev
- heimdal-docs
- heimdal-kdc
- heimdal-servers
- heimdal-servers-x
- libasn1-6-heimdal
- libgssapi1-heimdal
- libhdb7-heimdal
- libkadm5clnt4-heimdal
- libkadm5srv7-heimdal
- libkafs0-heimdal
- libkrb5-17-heimdal


Description :

A remote Denial of Service vulnerability was discovered in the heimdal
implementation of the telnet daemon. A remote attacker could force the
server to crash due to a NULL de-reference before the user logged in,
resulting in inetd turning telnetd off because it forked too fast.

Please note that the heimdal-servers package is not officially
supported in Ubuntu (it is in the 'universe' component of the
archive). However, this affects you if you use a customized version
built from the heimdal source package (which is supported).

Solution :

Upgrade to :
- heimdal-clients-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- heimdal-clients-x-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- heimdal-dev-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- heimdal-docs-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- heimdal-kdc-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- heimdal-servers-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- heimdal-servers-x-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- libasn1-6-heimdal-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- libgssapi1-heimdal-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
- libhdb7-heimdal-0.6.3-11ubuntu1.2 (Ubuntu 5.10)
[...]


Threat Level: High


Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.