CVE-2007-2798

Stack-based buffer overflow in the rename_principal_2_svc function in kadmind for MIT Kerberos 1.5.3, 1.6.1, and other versions allows remote authenticated users to execute arbitrary code via a crafted request to rename a principal.

🔗 References (106)

• cve@mitreftp://patches.sgi.com/support/free/security/advisories/20070602-01-P.asc
• cve@mitrehttp://docs.info.apple.com/article.html?artnum=306172
• cve@mitrehttp://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02257427
• cve@mitrehttp://labs.idefense.com/intelligence/vulnerabilities/display.php?id=548
• cve@mitrehttp://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html
• cve@mitrehttp://lists.grok.org.uk/pipermail/full-disclosure/2007-September/065902.html
• cve@mitrehttp://osvdb.org/36595
• cve@mitrehttp://secunia.com/advisories/25800
• cve@mitrehttp://secunia.com/advisories/25801
• cve@mitrehttp://secunia.com/advisories/25814
• cve@mitrehttp://secunia.com/advisories/25821
• cve@mitrehttp://secunia.com/advisories/25870
• cve@mitrehttp://secunia.com/advisories/25875
• cve@mitrehttp://secunia.com/advisories/25888
• cve@mitrehttp://secunia.com/advisories/25890