Description
Buffer overflow in Kerberos IV compatibility libraries as used in Kerberos V allows local users to gain root privileges via a long line in a kerberos configuration file, which can be specified via the KRB_CONF environmental variable.
Affected products
- MIT / Kerberos 51.5.2 – 1.5.2
References
- MAILING_LISThttp://marc.info/?l=bugtraq&m=87602167420878&w=2