Published at LXer:
The Kerberos developers at the Massachusetts Institute of Technology (MIT) have reported multiple vulnerabilities in their network authentication suite. Attackers can reportedly exploit a weakness to cause a SPNEGO GSS-API application crash, including the Kerberos administration daemon (kadmind). A remote attack could also cause a key distribution center (KDC) or kinit program to crash.
Read More...