openSUSE Security Update : krb5 (krb5-1792)

This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.

Synopsis :

The remote openSUSE host is missing a security update.

Description :

Specially crafted ticket requests could crash the kerberos server

Specially crafted AES and RC4 packets could allow unauthenticated
remote attackers to trigger an integer underflow that leads to heap
memory corruption (CVE-2009-4212).

See also :

Solution :

Update the affected krb5 packages.

Risk factor :

Critical / CVSS Base Score : 10.0

Family: SuSE Local Security Checks

Nessus Plugin ID: 44090 ()

Bugtraq ID:

CVE ID: CVE-2009-3295

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now