Openafs : Security Vulnerabilities, CVEs, Published In 2014

CVE-2014-4044

OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote attackers to cause a denial of service (uninitialized memory access and crash) via unspecified vectors related to TMAY requests.
Max CVSS
5.0
EPSS Score
1.70%
Published
2014-06-17
Updated
2014-06-21

CVE-2014-2852

OpenAFS before 1.6.7 delays the listen thread when an RXS_CheckResponse fails, which allows remote attackers to cause a denial of service (performance degradation) via an invalid packet.
Max CVSS
5.0
EPSS Score
0.20%
Published
2014-04-14
Updated
2014-04-15

CVE-2014-0159

Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
Max CVSS
5.0
EPSS Score
29.98%
Published
2014-04-14
Updated
2016-08-24
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close