MIT.Kerberos.KDC.TGS.Request.NULL.Pointer.DoS
Description
This indicates an attack attempt against a Denial Of Service vulnerability in MIT Kerberos.
The vulnerability is caused by an null pointer dereference error when the software handles multiple "TGS" requests. It allows a remote attacker to crash vulnerable systems via sending crafted "TGS" requests.
Affected Products
KDC in MIT krb5-1.8 through krb5-1.8.3
Impact
Denial of Service: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's web site for a patch.
http://web.mit.edu/kerberos/advisories/2010-006-patch.txt
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |