CVE-2007-2798

Name of the Vulnerable Software and Affected Versions: krb5-server-1.5 versions 1.5 krb5-libs-1.5 versions 1.5 mit-krb5 versions prior to 1.5.2-r3 krb5-devel-1.5 versions 1.5 MIT Kerberos versions 1.5.3, 1.6.1 krb5-1.5 versions 1.5 krb5-workstation-1.5 versions 1.5

Description: The issue concerns multiple vulnerabilities in the krb5 package of Red Hat Enterprise Linux and Gentoo Linux, which can lead to a breach of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely. A specific vulnerability is a stack-based buffer overflow in the rename principal 2 svc function in kadmind for MIT Kerberos, allowing remote authenticated users to execute arbitrary code via a crafted request to rename a principal.

Recommendations: For krb5-server-1.5 version 1.5, update to a version that includes the fix for the vulnerability. For krb5-libs-1.5 version 1.5, update to a version that includes the fix for the vulnerability. For mit-krb5 versions prior to 1.5.2-r3, update to version 1.5.2-r3 or later. For krb5-devel-1.5 version 1.5, update to a version that includes the fix for the vulnerability. For MIT Kerberos versions 1.5.3 and 1.6.1, update to a version that includes the fix for the vulnerability. For krb5-1.5 version 1.5, update to a version that includes the fix for the vulnerability. For krb5-workstation-1.5 version 1.5, update to a version that includes the fix for the vulnerability. As a temporary workaround, consider restricting access to the rename principal 2 svc function in kadmind until a patch is available.