Openafs: >> Openafs >> 1.6.5.2 Security Vulnerabilities
OpenAFS before 1.6.13 allows remote attackers to spoof bos commands via unspecified vectors.
CVSS Score
6.8
EPSS Score
0.008
Published
2015-08-12
vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remote attackers to obtain stack data by sniffing the network.
CVSS Score
4.3
EPSS Score
0.005
Published
2015-08-12
OpenAFS before 1.6.7 delays the listen thread when an RXS_CheckResponse fails, which allows remote attackers to cause a denial of service (performance degradation) via an invalid packet.
CVSS Score
5.0
EPSS Score
0.005
Published
2014-04-14
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
CVSS Score
5.0
EPSS Score
0.014
Published
2014-04-14
Page 3