Lucene search
K

639 matches found

securityvulns
securityvulns
added 2014/06/17 12:0 a.m.38 views

OpenAFS uninitialized memory

Uninitialized memory access is possible...

5CVSS3.4AI score0.01595EPSS
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2014/06/17 12:0 a.m.48 views

[oss-security] CVE request: OpenAFS 1.6.8 TMAY fileserver crashes

New code introduced in OpenAFS 1.6.8 does not properly zero fields in the host structure in the OpenAFS fileserver, leading to some variables in the host structure being left initialized from recycled heap memory. While no mechanism for exploitation is currently known, the affected file server...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2014/05/05 12:0 a.m.74 views

[SECURITY] [DSA 2899-1] openafs security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2899-1 [email protected] http://www.debian.org/security/ Thijs Kinkhorst April 09, 2014 http://www.debian.org/security/faq -...

5CVSS2.3AI score0.02179EPSS
Exploits1
securityvulns
securityvulns
added 2014/05/05 12:0 a.m.48 views

OpenAFS DoS

Buffer overflow in GetStatistics64 RPC call...

5CVSS3.4AI score0.02179EPSS
Exploits1References1Affected Software1
seebug.org
seebug.org
added 2014/04/17 12:0 a.m.31 views

OpenAFS GetStatistics64 RPC远程拒绝服务漏洞

Bugtraq ID:66776 CVE ID:CVE-2014-0159 OpenAFS是一款开放源代码的分布式文件系统。 OpenAFS GetStatistics64 RPC存在错误,允许攻击者利用漏洞发送特殊的请求触发缓冲区溢出和使应用程序崩溃。 0 OpenAFS 1.4.8 - 1.6.6 OpenAFS 1.6.7版本已修复该漏洞,建议用户下载使用: http://openafs.org/...

5CVSS6.4AI score0.02179EPSS
Exploits1
NVD
NVD
added 2014/04/14 3:9 p.m.17 views

CVE-2014-2852

OpenAFS before 1.6.7 delays the listen thread when an RXSCheckResponse fails, which allows remote attackers to cause a denial of service performance degradation via an invalid packet...

5CVSS6.4AI score0.01287EPSS
Exploits0References2
OSV
OSV
added 2014/04/14 3:9 p.m.5 views

CVE-2014-2852

OpenAFS before 1.6.7 delays the listen thread when an RXSCheckResponse fails, which allows remote attackers to cause a denial of service performance degradation via an invalid packet...

6.4AI score
Exploits0References2
OSV
OSV
added 2014/04/14 3:9 p.m.2 views

DEBIAN-CVE-2014-2852

OpenAFS before 1.6.7 delays the listen thread when an RXSCheckResponse fails, which allows remote attackers to cause a denial of service performance degradation via an invalid packet...

5CVSS6.8AI score0.01287EPSS
Exploits0References1
NVD
NVD
added 2014/04/14 3:9 p.m.22 views

CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

5CVSS6.5AI score0.02179EPSS
Exploits1References6
OSV
OSV
added 2014/04/14 3:9 p.m.7 views

CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

6.5AI score
Exploits0References9
OSV
OSV
added 2014/04/14 3:9 p.m.1 views

DEBIAN-CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

5CVSS7AI score0.02179EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2014/04/14 3:9 p.m.31 views

CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

5CVSS6AI score0.02179EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2014/04/14 3:9 p.m.19 views

CVE-2014-2852

OpenAFS before 1.6.7 delays the listen thread when an RXSCheckResponse fails, which allows remote attackers to cause a denial of service performance degradation via an invalid packet...

5CVSS5.9AI score0.01287EPSS
Exploits0References3
Prion
Prion
added 2014/04/14 3:9 p.m.18 views

Design/Logic Flaw

OpenAFS before 1.6.7 delays the listen thread when an RXSCheckResponse fails, which allows remote attackers to cause a denial of service performance degradation via an invalid packet...

5CVSS7AI score0.01287EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2014/04/14 3:9 p.m.17 views

Buffer overflow

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

5CVSS7.1AI score0.02179EPSS
Exploits1References6Affected Software2
OSV
OSV
added 2014/04/14 3:9 p.m.3 views

UBUNTU-CVE-2014-2852

OpenAFS before 1.6.7 delays the listen thread when an RXSCheckResponse fails, which allows remote attackers to cause a denial of service performance degradation via an invalid packet...

5CVSS5.8AI score0.01287EPSS
Exploits0References4
OSV
OSV
added 2014/04/14 3:9 p.m.3 views

UBUNTU-CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

5CVSS5.9AI score0.02179EPSS
Exploits1References3
CVE
CVE
added 2014/04/14 3:0 p.m.58 views

CVE-2014-2852

OpenAFS prior to 1.6.7 delays the listen thread when an RXS_CheckResponse fails, enabling a remote attacker to cause denial of service (performance degradation) via an invalid packet. Multiple connected sources corroborate this issue and its association with CVE-2014-2852, with remediation docume...

5CVSS6.5AI score0.01287EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2014/04/14 3:0 p.m.65 views

CVE-2014-0159

CVE-2014-0159 affects OpenAFS: the GetStatistics64 RPC in OpenAFS 1.4.8 before 1.6.7 is vulnerable to a buffer overflow that can cause a remote denial of service (crash). Connected advisories confirm the issue exists in OpenAFS before 1.6.7 and indicate remediation by upgrading to newer OpenAFS r...

5CVSS6.5AI score0.02179EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2014/04/14 3:0 p.m.37 views

CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call RPC in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service crash via a crafted statsVersion argument...

6.4AI score0.02179EPSS
Exploits1References6
Rows per page
Query Builder