Heimdal: rshd privilege escalation An error in the rshd daemon of Heimdal could allow authenticated users to elevate privileges. heimdal March 17, 2006 March 17, 2006: 01 121839 remote 0.7.2 0.7.2

Heimdal is a free implementation of Kerberos 5.

An unspecified privilege escalation vulnerability in the rshd server of Heimdal has been reported.

Authenticated users could exploit the vulnerability to escalate privileges or to change the ownership and content of arbitrary files.

There is no known workaround at this time.

All Heimdal users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=app-crypt/heimdal-0.7.2" CVE-2006-0582 Heimdal Advisory 2006-02-06 koon DerCorny DerCorny