CVE-2007-0957

Name of the Vulnerable Software and Affected Versions: MIT krb5 versions prior to 1.6.1

Description: The issue is related to a stack-based buffer overflow in the krb5 klog syslog function within the kadm5 library. This library is used by the Kerberos administration daemon (kadmind) and the Key Distribution Center (KDC). The overflow can be triggered by remote authenticated users who provide crafted arguments, potentially involving certain format string specifiers. This could allow the execution of arbitrary code and modification of the Kerberos key database.

Recommendations: For versions prior to 1.6.1, update to version 1.6.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the krb5 klog syslog function until a patch is available.