Openafs : Security Vulnerabilities, CVEs, Published In 2014
OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote attackers to cause a denial of service (uninitialized memory access and crash) via unspecified vectors related to TMAY requests.
Max CVSS
5.0
EPSS Score
1.70%
Published
2014-06-17
Updated
2014-06-21
OpenAFS before 1.6.7 delays the listen thread when an RXS_CheckResponse fails, which allows remote attackers to cause a denial of service (performance degradation) via an invalid packet.
Max CVSS
5.0
EPSS Score
0.20%
Published
2014-04-14
Updated
2014-04-15
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
Max CVSS
5.0
EPSS Score
29.98%
Published
2014-04-14
Updated
2016-08-24
3 vulnerabilities found