krb5: information disclosure
| Package(s): | krb5 | CVE #(s): | CVE-2012-1012 | ||||
| Created: | August 1, 2012 | Updated: | August 1, 2012 | ||||
| Description: | From the Ubuntu advisory:
It was discovered that the kadmin protocol implementation in MIT krb5 did not properly restrict access to the SET_STRING and GET_STRINGS operations. A remote authenticated attacker could use this to expose or modify sensitive information. This issue only affected Ubuntu 12.04 LTS. | ||||||
| Alerts: |
| ||||||