NetBSD Information for VU#602625
KTH Kerberos environment variables krb4proxy and KRBCONFDIR may be used insecurely
- Vendor Information Help Date Notified: 11 Dec 2000
- Statement Date:
- Date Updated: 11 Jan 2001
No statement is currently available from the vendor regarding this vulnerability.
The vendor has not provided us with any further information regarding this vulnerability.
NetBSD has produced an advisory on this issue. It is available from:
They appear to be vulnerable to this issue.
If you have feedback, comments, or additional information about this vulnerability, please send us email.