oval:org.mitre.oval:def:2536

Definition Id: oval:org.mitre.oval:def:2536

Oval ID:	oval:org.mitre.oval:def:2536
Title:	Kerberos 5 KDC Heap Corruption Vulnerability
Description:	The Key Distribution Center (KDC) in Kerberos 5 (krb5) 1.2.7 and earlier allows remote, authenticated attackers to cause a denial of service (crash) on KDCs within the same realm using a certain protocol request that causes the KDC to corrupt its heap (aka "buffer underrun").
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2003-0082	Version:	2
Platform(s):	Sun Solaris 8	Product(s):	Kerberos5
Definition Synopsis:
Software section Solaris 8 or 9 installed Solaris 8 Installed AND Solaris 9 Installed AND Kerberos v5 (any SUNWkrbr/SUNWkrbu/SUNWkrbux) installed Kerberos v5 - Root (SUNWkrbr) installed AND Kerberos v5 - Usr (SUNWkrbu/SUNWkrbux) installed AND NOT Patches 112237-09 and 112390-08 or later installed Patch 112237-09 or later installed AND Patch 112390-08 or later installed AND NOT Patches 112925-03,112923-03,112921-02, and 112908-10 or later installed Patch 112925-03 or later installed AND Patch 112923-03 or later installed AND Patch 112921-02 or later installed AND Patch 112908-10 or later installed AND Configuration section /etc/krb5/krb5.conf is configured with a kerberos domain