I am going through PCI Compliance and I have a High Vulnerability on my server:
Kerberos 5 Multiple Vulnerabilities
The remote host is running Kerberos 5. There are multiple flaws which
affect this product.
Service: –
CVE: CVE-2004-0642, CVE-2003-0139, CVE-2003-0059,
CVE-2004-0772, CVE-2003-0072, CVE-2003-0028, CVE-2002-0036,
CVE-2003-0082, CVE-2004-0643, CVE-2003-0060, CVE-2003-0138,
CVE-2004-0644
NVD: CVE-2004-0642, CVE-2003-0139, CVE-2003-0059,
CVE-2004-0772, CVE-2003-0072, CVE-2003-0028, CVE-2002-0036,
CVE-2003-0082, CVE-2004-0643, CVE-2003-0060, CVE-2003-0138,
CVE-2004-0644
CVSSv2: AV:N/AC:L/Au:N/C:P/I:P/A:P (Base Score:7.50)
The remediation action is:
Upgrade to a current and secure version of Kerberos.
Anyone have any ideas on what I need to do?
Current server version is: 10.4.11
Any help will be greatly appreciated!