CVE-2003-0060

Name of the Vulnerable Software and Affected Versions MIT Kerberos V5 Key Distribution Center (KDC) versions prior to 1.2.5

Description The issue concerns format string vulnerabilities in the logging routines, which can be exploited by remote attackers. By using format string specifiers in Kerberos principal names, attackers can cause a denial of service, leading to a crash, and potentially execute arbitrary code.

Recommendations For versions prior to 1.2.5, update to version 1.2.5 or later to resolve the issue.