CVE-2017-17432

2017-12-05T19:29:00
ID CVE-2017-17432
Type cve
Reporter NVD
Modified 2018-02-03T21:29:17

Description

OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application crash) via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value.