CVE-2017-17432

2017-12-06T00:29:00
ID CVE-2017-17432
Type cve
Reporter cve@mitre.org
Modified 2019-10-03T00:03:00

Description

OpenAFS 1.x before 1.6.22 does not properly validate Rx ack packets, which allows remote attackers to cause a denial of service (system crash or application crash) via crafted fields, as demonstrated by an integer underflow and assertion failure for a small MTU value.