Kerberos Detected

CVE 2000-0389
CVE 2000-0390
CVE 2000-0391

Impact

If any services which use a vulnerable version of Kerberos are enabled, remote root access may be possible due to a buffer overflow condition. If the Key Distribution Center is affected, the entire Kerberos domain could be compromised.

Background

Kerberos is used to provide strong authentication and encryption between a client and a server. A Kerberos Distribution Center, consisting of an authentication server and a ticket granting server, is involved in the authentication process. Cryptography is used to verify the identity of the user and the server, and to encrypt the session between them.

The Problem

Four buffer overflow conditions have been discovered in Kerberos. The most serious one could allow remote root access if any of the following services are running. Another buffer overflow condition could allow a local attacker to gain root access by exploiting v4rcp or ksu.

The following implementations of Kerberos are affected by these vulnerabilities:

Resolution

Upgrade to Kerberos version krb5-1.2, or install the appropriate patches to fix the problem.

Alternatively, the problems in some of the services can be fixed with the following workarounds: