Vulnerabilty in heimdal <= 1.5.1 may allow remote code execution
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4862
Currently exploited in the wild
Solution:
- Patch: http://security.freebsd.org/patches/SA-11:08/telnetd.patch
or
- Upgrade to 1.5.1
(from redmine: issue id 913, created on 2012-01-06, closed on 2012-01-16)
- Changesets:
- Revision aec8070d by Natanael Copa on 2012-01-10T14:55:12Z:
main/heimdal: security fix (CVE-2011-4862)
fixes #913
(cherry picked from commit f81ee55cee797b4203340cebc3f15691ac93faeb)