Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2007-0956

The telnet daemon (telnetd) in MIT krb5 before 1.6.1 allows remote attackers to bypass authentication and gain system access via a username beginning with a '-' character, a similar issue to CVE-2007-0882.

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://web.mit.edu/ker...
DEBIAN: DSA-1276
GENTOO: GLSA-200704-02
REDHAT: RHSA-2007:0095
SGI: 20070401-01-P
SUNALERT: 102867
SUSE: SUSE-SA:2007:025
UBUNTU: USN-449-1
CERT-VN: VU#220816
BID: 23281
SECTRACK: 1017848
SECUNIA: 24706
SECUNIA: 24736
SECUNIA: 24757
SECUNIA: 24740
SECUNIA: 24750
SECUNIA: 24755
SECUNIA: 24785
SECUNIA: 24786
SECUNIA: 24817
SECUNIA: 24735
MANDRIVA: MDKSA-2007:077
CERT: TA07-093B
VUPEN: ADV-2007-1249
VUPEN: ADV-2007-1218
XF: kerberos-telnet-securi...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20070403 MITKRB5-SA-20...
BUGTRAQ: 20070404 rPSA-2007-006...
BUGTRAQ: 20070405 FLEA-2007-000...

Launchpad.net

CVE 2007-0956

Related bugs

References