FierceCIO   FierceHealthIT

Kerberos flaws could open system to attack

Three security flaws were found recently in the popular Kerberos security software. Kerberos 5 release 1.4.1 and earlier versions are affected. One of the bugs causes free memory to appear in unexpected places, leading to a key distribution crash. Another uses a buffer overflow to let attackers run malicious code, while the third could get its code executed by trying to free memory that already is available. Various security firms all gave the bugs their highest seriousness levels, and many applications already have patches available. More are likely to be announced soon, but not from Microsoft: Windows also uses Kerberos authentication but isn't affected by this one.

For more about the bugs:
- check out this News.com article


Rate it:  
More stories about Vulnerabilities   Security   Patches   Microsoft Windows   Hacking