CVE-2007-5902

Name of the Vulnerable Software and Affected Versions MIT Kerberos 5 (krb5) (affected versions not specified)

Description The issue is related to an integer overflow in the svcauth gss get principal function, which can be triggered by a large length value for a GSS client name in an RPC request. This can potentially allow remote attackers to have an unknown impact.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.