The krb5_db2_lockout_audit function in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.8 through 1.8.4, when the db2 (aka Berkeley DB) back end is used, allows remote attackers to cause a denial of service (assertion failure and daemon exit) via unspecified vectors, a different vulnerability than CVE-2011-1528.
http://web.mit.edu/kerberos/advisories/MITKRB5-SA-2011-006.txt
OR
cpe:2.3:a:mit:kerberos_5:1.8:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.8.1:*:*:*:*:*:*:*
cpe:2.3:a:mit:kerberos_5:1.8.2:*:*:*:*:*:*:*
ID | Name | Product | Family | Severity |
---|---|---|---|---|
80650 | Oracle Solaris Third-Party Patch Update : kerberos (multiple_input_validation_vulnerabilities_in) | Nessus | Solaris Local Security Checks | high |
57655 | GLSA-201201-13 : MIT Kerberos 5: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | critical |