Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2005:330

The remote host is missing updates announced in
advisory RHSA-2005:330.

Kerberos is a networked authentication system which uses a trusted third
party (a KDC) to authenticate clients and servers to each other.

The krb5-workstation package includes a Kerberos-aware telnet client.
Two buffer overflow flaws were discovered in the way the telnet client
handles messages from a server. An attacker may be able to execute
arbitrary code on a victim's machine if the victim can be tricked into
connecting to a malicious telnet server. The Common Vulnerabilities and
Exposures project ( has assigned the names CVE-2005-0468 and
CVE-2005-0469 to these issues.

Users of krb5 should update to these erratum packages which contain a
backported patch to correct this issue.

Red Hat would like to thank iDEFENSE for their responsible disclosure of
this issue.

Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

Risk factor : High

CVSS Score:

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2005-0468
BugTraq ID: 12919
CERT/CC vulnerability note: VU#341908
Conectiva Linux advisory: CLA-2005:962
Debian Security Information: DSA-703 (Google Search)
Debian Security Information: DSA-731 (Google Search)
FreeBSD Security Advisory: FreeBSD-SA-05:01.telnet
SGI Security Advisory: 20050405-01-P
Common Vulnerability Exposure (CVE) ID: CVE-2005-0469
BugTraq ID: 12918
CERT/CC vulnerability note: VU#291924
Debian Security Information: DSA-697 (Google Search)
Debian Security Information: DSA-699 (Google Search)
CopyrightCopyright (c) 2005 E-Soft Inc.

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.