CVE-2007-0956

Severity

76%

Complexity

49%

Confidentiality

165%

The vendor will address this issue in the upcoming krb5-1.6.1 release.

The telnet daemon (telnetd) in MIT krb5 before 1.6.1 allows remote attackers to bypass authentication and gain system access via a username beginning with a '-' character, a similar issue to CVE-2007-0882.

The vendor will address this issue in the upcoming krb5-1.6.1 release.

CVSS 2.0 Base Score 7.6. CVSS Attack Vector: network. CVSS Attack Complexity: high. CVSS Vector: (AV:N/AC:H/Au:N/C:C/I:C/A:C).

Overview

First reported 17 years ago

2007-04-06 01:19:00

Last updated 6 years ago

2018-10-16 16:35:00

Affected Software

Debian Debian Linux 3.1

3.1

Debian GNU/Linux 4.0

4.0

MIT Kerberos

References

20070401-01-P

SUSE-SA:2007:025

24706

Vendor Advisory

24735

24736

Vendor Advisory

24740

24750

24755

24757

Vendor Advisory

24785

24786

24817

GLSA-200704-02

102867

http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2007-001-telnetd.txt

Vendor Advisory

DSA-1276

Vendor Advisory

VU#220816

Third Party Advisory, US Government Resource

MDKSA-2007:077

RHSA-2007:0095

20070403 MITKRB5-SA-2007-001: telnetd allows login as arbitrary user [CVE-2007-0956]

20070404 rPSA-2007-0063-1 krb5 krb5-server krb5-services krb5-test krb5-workstation

20070405 FLEA-2007-0008-1: krb5

23281

1017848

USN-449-1

TA07-093B

US Government Resource

ADV-2007-1218

ADV-2007-1249

kerberos-telnet-security-bypass(33414)

oval:org.mitre.oval:def:10046

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.