March 14, 2001
Kerberos 4 and 5 security advisory
Author: JT Smith
"On a system running login daemons with Kerberos 4 support, a local user may be able to overwrite arbitrary files as root, with limited contents. This could potentially result in unauthorized root access." More details at MIT.