Home Forums OS X Server and Client Discussion Updates Update Kerberos on Tiger Server?

Viewing 1 post (of 1 total)
  • Author
    Posts
  • #375999
    surfincajun
    Participant

    I am going through PCI Compliance and I have a High Vulnerability on my server:

    Kerberos 5 Multiple Vulnerabilities
    The remote host is running Kerberos 5. There are multiple flaws which
    affect this product.
    Service: –
    CVE: CVE-2004-0642, CVE-2003-0139, CVE-2003-0059,
    CVE-2004-0772, CVE-2003-0072, CVE-2003-0028, CVE-2002-0036,
    CVE-2003-0082, CVE-2004-0643, CVE-2003-0060, CVE-2003-0138,
    CVE-2004-0644
    NVD: CVE-2004-0642, CVE-2003-0139, CVE-2003-0059,
    CVE-2004-0772, CVE-2003-0072, CVE-2003-0028, CVE-2002-0036,
    CVE-2003-0082, CVE-2004-0643, CVE-2003-0060, CVE-2003-0138,
    CVE-2004-0644
    CVSSv2: AV:N/AC:L/Au:N/C:P/I:P/A:P (Base Score:7.50)

    The remediation action is:
    Upgrade to a current and secure version of Kerberos.

    Anyone have any ideas on what I need to do?

    Current server version is: 10.4.11

    Any help will be greatly appreciated!

Viewing 1 post (of 1 total)
  • You must be logged in to reply to this topic.

Comments are closed