CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
92.2%
Integer overflow in ptserver in OpenAFS before 1.6.2 allows remote attackers to cause a denial of service (crash) via a large list from the IdToName RPC, which triggers a heap-based buffer overflow.
Vendor | Product | Version | CPE |
---|---|---|---|
openafs | openafs | * | cpe:2.3:a:openafs:openafs:*:*:*:*:*:*:*:* |
openafs | openafs | 1.5.10 | cpe:2.3:a:openafs:openafs:1.5.10:*:*:*:*:*:*:* |
openafs | openafs | 1.5.11 | cpe:2.3:a:openafs:openafs:1.5.11:*:*:*:*:*:*:* |
openafs | openafs | 1.5.12 | cpe:2.3:a:openafs:openafs:1.5.12:*:*:*:*:*:*:* |
openafs | openafs | 1.5.13 | cpe:2.3:a:openafs:openafs:1.5.13:*:*:*:*:*:*:* |
openafs | openafs | 1.5.14 | cpe:2.3:a:openafs:openafs:1.5.14:*:*:*:*:*:*:* |
openafs | openafs | 1.5.15 | cpe:2.3:a:openafs:openafs:1.5.15:*:*:*:*:*:*:* |
openafs | openafs | 1.5.16 | cpe:2.3:a:openafs:openafs:1.5.16:*:*:*:*:*:*:* |
openafs | openafs | 1.5.17 | cpe:2.3:a:openafs:openafs:1.5.17:*:*:*:*:*:*:* |
openafs | openafs | 1.5.18 | cpe:2.3:a:openafs:openafs:1.5.18:*:*:*:*:*:*:* |