|
Family: Debian Local Security Checks --> Category: infos
[DSA1146] DSA-1146-1 krb5 Vulnerability Scan
Vulnerability Scan Summary DSA-1146-1 krb5
Detailed Explanation for this Vulnerability Test
In certain application programs packaged in the MIT Kerberos 5 source
distribution, calls to setuid() and seteuid() are not always checked
for success and may fail with some PAM configurations. A local
user could exploit one of these vulnerabilities to result in privilege
escalation. No exploit code is known to exist at this time.
For the stable distribution (sarge) these problems have been fixed in
version 1.3.6-2sarge3.
For the unstable distribution (sid) these problems have been fixed in
version 1.4.3-9.
We recommend that you upgrade your krb5 packages.
Solution : http://www.debian.org/security/2006/dsa-1146
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|