Openafs@1.5.77 Security Vulnerabilities and Issues — Openafs@1.5.77 CVE List

Lucene search

OpenafsOpenafs1.5.77

3 matches found

CVE•added 2013/03/14 3:13 a.m.•57 views

CVE-2013-1795

Integer overflow in ptserver in OpenAFS before 1.6.2 allows remote attackers to cause a denial of service (crash) via a large list from the IdToName RPC, which triggers a heap-based buffer overflow.

5CVSS6.7AI score0.02115EPSS

CVE•added 2013/03/14 3:13 a.m.•54 views

CVE-2013-1794

Buffer overflow in certain client utilities in OpenAFS before 1.6.2 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long fileserver ACL entry.

6.5CVSS7.5AI score0.02802EPSS

CVE•added 2015/11/06 9:59 p.m.•52 views

CVE-2015-7763

rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and 1.7.x before 1.7.33 does not properly initialize padding at the end of an Rx acknowledgement (ACK) packet, which allows remote attackers to obtain sensitive information by (1) conducting a replay attack or (2) sniffing the network.

5CVSS6AI score0.00472EPSS