Thread-topic: [SA25464] Sun Solaris Kerberos kadm5 Library Vulnerability
>
> TITLE:
> Sun Solaris Kerberos kadm5 Library Vulnerability
>
> SECUNIA ADVISORY ID:
> SA25464
>
> VERIFY ADVISORY:
> http://secunia.com/advisories/25464/
>
> CRITICAL:
> Moderately critical
>
> IMPACT:
> DoS, System access
>
> WHERE:
> From remote
>
> OPERATING SYSTEM:
> Sun Solaris 8
> http://secunia.com/product/94/
> Sun Solaris 9
> http://secunia.com/product/95/
> Sun Solaris 10
> http://secunia.com/product/4813/
>
> DESCRIPTION:
> Sun has acknowledged a vulnerability in Sun Solaris, which can be
> exploited by malicious users to cause a DoS (Denial of Service) or
> compromise a vulnerable system.
>
> For more information, see #2 in:
> SA24740
>
> The vulnerability is reported in Sun Solaris 8, 9, and 10 for both
> the SPARC and x86 platforms.
>
> SOLUTION:
> A final resolution is pending. As a workaround, it is possible to
> disable kadmind (which will also disable all administrative
> functions).
>
> ORIGINAL ADVISORY:
> http://sunsolve.sun.com/search/document.do?assetkey=1-26-102930-1
>
> OTHER REFERENCES:
> SA24740:
> http://secunia.com/advisories/24740/
>