CVE-2006-6143 Information

Description

The RPC library in Kerberos 5 1.4 through 1.4.4 and 1.5 through 1.5.1 as used in Kerberos administration daemon (kadmind) and other products that use this library calls an uninitialized function pointer in freed memory which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors.

Reference

http://docs.info.apple.com/article.html?artnum=305391 http://fedoranews.org/cms/node/2375 http://fedoranews.org/cms/node/2376 http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html http://lists.suse.com/archive/suse-security-announce/2007-Jan/0004.html http://osvdb.org/31281 http://secunia.com/advisories/23667 http://secunia.com/advisories/23696 http://secunia.com/advisories/23701 http://secunia.com/advisories/23706 http://secunia.com/advisories/23707 http://secunia.com/advisories/23772 http://secunia.com/advisories/23903 http://secunia.com/advisories/24966 http://security.gentoo.org/glsa/glsa-200701-21.xml http://securitytracker.com/id?1017493 http://web.mit.edu/kerberos/www/advisories/MITKRB5-SA-2006-002-rpc.txt http://www.kb.cert.org/vuls/id/481564 http://www.mandriva.com/security/advisories?name=MDKSA-2007:008 http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.006.html http://www.securityfocus.com/archive/1/456406/100/0/threaded http://www.securityfocus.com/bid/21970 http://www.ubuntu.com/usn/usn-408-1 http://www.us-cert.gov/cas/techalerts/TA07-009B.html http://www.us-cert.gov/cas/techalerts/TA07-109A.html http://www.vupen.com/english/advisories/2007/0111 http://www.vupen.com/english/advisories/2007/1470 https://exchange.xforce.ibmcloud.com/vulnerabilities/31422 https://issues.rpath.com/browse/RPL-925