CVE-2007-0957: Buffer Overflow
First published: Fri Apr 06 2007(Updated: )
Stack-based buffer overflow in the krb5_klog_syslog function in the kadm5 library, as used by the Kerberos administration daemon (kadmind) and Key Distribution Center (KDC), in MIT krb5 before 1.6.1 allows remote authenticated users to execute arbitrary code and modify the Kerberos key database via crafted arguments, possibly involving certain format string specifiers.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| MIT Kerberos 5 | <1.6.1 | |
| Debian GNU/Linux | =3.1 | |
| Debian GNU/Linux | =4.0 | |
| Ubuntu Linux | =5.10 | |
| Ubuntu Linux | =6.06 | |
| Ubuntu Linux | =6.10 | |
| Debian | =3.1 | |
| Debian | =4.0 | |
| Ubuntu | =6.10 | |
| Ubuntu | =5.10 | |
| Ubuntu | =6.06 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2007-002-syslog.txt
- http://www.debian.org/security/2007/dsa-1276
- http://www.redhat.com/support/errata/RHSA-2007-0095.html
- http://www.ubuntu.com/usn/usn-449-1
- http://www.kb.cert.org/vuls/id/704024
- http://secunia.com/advisories/24706
- http://secunia.com/advisories/24736
- http://secunia.com/advisories/24757
- http://security.gentoo.org/glsa/glsa-200704-02.xml
- http://lists.suse.com/archive/suse-security-announce/2007-Apr/0001.html
- http://www.securityfocus.com/bid/23285
- http://www.securitytracker.com/id?1017849
- http://secunia.com/advisories/24740
- http://secunia.com/advisories/24750
- http://secunia.com/advisories/24785
- http://secunia.com/advisories/24786
- http://secunia.com/advisories/24798
- http://secunia.com/advisories/24817
- http://secunia.com/advisories/24735
- http://docs.info.apple.com/article.html?artnum=305391
- http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html
- http://secunia.com/advisories/24966
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:077
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-102930-1
- http://www.us-cert.gov/cas/techalerts/TA07-093B.html
- http://www.us-cert.gov/cas/techalerts/TA07-109A.html
- http://secunia.com/advisories/25464
- http://www.vupen.com/english/advisories/2007/1218
- http://www.vupen.com/english/advisories/2007/1470
- http://www.vupen.com/english/advisories/2007/1250
- http://www.vupen.com/english/advisories/2007/1983
- https://exchange.xforce.ibmcloud.com/vulnerabilities/33411
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10757
- http://www.securityfocus.com/archive/1/464814/30/7170/threaded
- http://www.securityfocus.com/archive/1/464666/100/0/threaded
- http://www.securityfocus.com/archive/1/464592/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2007-0957?
CVE-2007-0957 is classified as a critical vulnerability due to its potential to allow remote authenticated users to execute arbitrary code.
How do I fix CVE-2007-0957?
To fix CVE-2007-0957, upgrade to MIT krb5 version 1.6.1 or later, or apply vendor patches for affected distributions.
Who is affected by CVE-2007-0957?
CVE-2007-0957 affects users of MIT Kerberos 5 versions prior to 1.6.1, as well as certain Debian and Ubuntu Linux versions.
What types of attacks can occur due to CVE-2007-0957?
Exploitation of CVE-2007-0957 can lead to execution of arbitrary code and unauthorized modifications to the Kerberos key database.
Are remote authenticated users able to exploit CVE-2007-0957?
Yes, remote authenticated users can exploit CVE-2007-0957 to execute arbitrary code on the vulnerable system.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- vendor/mit
- canonical/mit kerberos 5
- vendor/debian
- canonical/debian gnu/linux
- version/debian gnu/linux/3.1
- version/debian gnu/linux/4.0
- vendor/canonical
- canonical/ubuntu linux
- version/ubuntu linux/5.10
- version/ubuntu linux/6.06
- version/ubuntu linux/6.10
- canonical/debian
- version/debian/3.1
- version/debian/4.0
- canonical/ubuntu
- version/ubuntu/6.10
- version/ubuntu/5.10
- version/ubuntu/6.06