CVE-2011-0283

Name of the Vulnerable Software and Affected Versions MIT Kerberos 5 (krb5) versions 1.9 through 1.9.2-r1 MIT Kerberos 5 (krb5) versions prior to 1.9.2-r1

Description The issue affects the Key Distribution Center (KDC) in MIT Kerberos 5, allowing remote attackers to cause a denial of service via a malformed request packet. This can lead to a NULL pointer dereference and daemon crash. Additionally, multiple vulnerabilities in the mit-krb5 package can compromise the confidentiality, integrity, and availability of protected information, and can be exploited remotely.

Recommendations For versions 1.9 through 1.9.2-r1, update to version 1.9.2-r1 or later to resolve the issue. For versions prior to 1.9.2-r1, update to version 1.9.2-r1 or later to resolve the issue. As a temporary workaround, consider restricting access to the KDC to minimize the risk of exploitation.