CVE-2011-0282

Name of the Vulnerable Software and Affected Versions MIT Kerberos 5 versions 1.6.x through 1.9 mit-krb5 versions prior to 1.9.2-r1

Description The issue allows remote attackers to cause a denial of service, potentially leading to a daemon crash, via a crafted principal name when an LDAP backend is used in MIT Kerberos 5. This can result in disruption of confidentiality, integrity, and availability of protected information. The exploitation can be carried out remotely.

Recommendations For MIT Kerberos 5 versions 1.6.x through 1.9, consider updating to a version later than 1.9 to resolve the issue. For mit-krb5 versions prior to 1.9.2-r1, update to version 1.9.2-r1 or later to fix the problem. As a temporary workaround, consider restricting access to the LDAP backend to minimize the risk of exploitation.