SuSE 10 Security Update : krb5-apps-servers (ZYPP Patch Number 3022)
High Nessus Plugin ID 29497
SynopsisThe remote SuSE 10 host is missing a security-related patch.
DescriptionWhen using the krb5 telnet daemon it was possible for remote attackers to override authentication mechanisms and gain root access to the machine by supplying a special username.
This is tracked by the Mitre CVE ID CVE-2007-0956.
SolutionApply ZYPP patch number 3022.