Intrusion Prevention

MIT.Kerberos.5.Principal.Name.Buffer.Overflow

Description

Multiple buffer overflows in krb5_aname_to_localname for MIT Kerberos 5 (krb5) 1.3.3 and earlier allow remote attackers to execute arbitrary code as root.

Affected Products

MIT Kerberos 5 (krb5) 1.3.3 and earlier.

Impact

Remote code execution.

Recommended Actions

This issue has been addressed in krb5-1.3.4.

CVE References

CVE-2004-0523

Other References

SA11753