Intrusion Prevention

MIT.Kerberos.KDC.LDAP.Back.Null.Pointer.Dereference.DoS

Description

This indicates an attack attempt to exploit a Denial of Service vulnerability
in MIT Kerberos.
The vulnerability is due to an error when the vulnerable application handles incoming requests. An attacker can exploit this vulnerability by sending a specially crafted request.

Affected Products

MIT Kerberos prior to krb5-1.9.1

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the patch, available from the website.
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-006.txt

CVE References

CVE-2011-1527