Description
telnetd in Heimdal 0.6.x before 0.6.6 and 0.7.x before 0.7.2 allows remote unauthenticated attackers to cause a denial of service (server crash) via unknown vectors that trigger a null dereference.
Affected products
- kth / heimdal0.6.1 – 0.6.1
- kth / heimdal0.6.2 – 0.6.2
- kth / heimdal0.6.3 – 0.6.3
- kth / heimdal0.6.4 – 0.6.4
- kth / heimdal0.6.5 – 0.6.5
- kth / heimdal0.7.1 – 0.7.1
- kth / heimdal0.7.1.1 – 0.7.1.1
- kth / heimdal0.7.1.2 – 0.7.1.2
- kth / heimdal0.7.1.3 – 0.7.1.3
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/18894
- VENDOR_ADVISORYhttp://secunia.com/advisories/19005
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/0653
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/0456
- VENDOR_ADVISORYhttp://www.ubuntu.com/usn/usn-253-1
- VENDOR_ADVISORYhttp://secunia.com/advisories/18961
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/24763
- MISChttp://securityreason.com/securityalert/449
- MISChttp://www.securityfocus.com/bid/16676
- VENDOR_ADVISORYhttp://www.debian.org/security/2006/dsa-977
- MISChttp://www.osvdb.org/23244
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2006/0628
- MISChttp://www.securityfocus.com/archive/1/426043/100/0/threaded
- MISChttp://www.stacken.kth.se/lists/heimdal-discuss/2006-02/msg00028.html