|Category:||FreeBSD Local Security Checks|
|Title:||FreeBSD Ports: krb5|
|Summary:||The remote host is missing an update to the system; as announced in the referenced advisory.|
The remote host is missing an update to the system
as announced in the referenced advisory.
The following package is affected: krb5
The do_standalone function in the MIT krb5 KDC database propagation
daemon (kpropd) in Kerberos 1.7, 1.8, and 1.9, when running in
standalone mode, does not properly handle when a worker child process
'exits abnormally, ' which allows remote attackers to cause a denial of
service (listening process termination, no new connections, and lack
of updates in slave KVC) via unspecified vectors.
Update your system with the appropriate patches or
Common Vulnerability Exposure (CVE) ID: CVE-2010-4022|
BugTraq ID: 46269
Bugtraq: 20110208 MITKRB5-SA-2011-001 kpropd denial of service [CVE-2010-4022] (Google Search)
SuSE Security Announcement: SUSE-SR:2011:004 (Google Search)
|Copyright||Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com|
|This is only one of 73533 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.