CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
97.0%
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
Vendor | Product | Version | CPE |
---|---|---|---|
openafs | openafs | 1.4.8 | cpe:2.3:a:openafs:openafs:1.4.8:*:*:*:*:*:*:* |
openafs | openafs | 1.4.9 | cpe:2.3:a:openafs:openafs:1.4.9:*:*:*:*:*:*:* |
openafs | openafs | 1.4.10 | cpe:2.3:a:openafs:openafs:1.4.10:*:*:*:*:*:*:* |
openafs | openafs | 1.4.11 | cpe:2.3:a:openafs:openafs:1.4.11:*:*:*:*:*:*:* |
openafs | openafs | 1.4.12 | cpe:2.3:a:openafs:openafs:1.4.12:*:*:*:*:*:*:* |
openafs | openafs | 1.4.14 | cpe:2.3:a:openafs:openafs:1.4.14:*:*:*:*:*:*:* |
openafs | openafs | 1.4.14.1 | cpe:2.3:a:openafs:openafs:1.4.14.1:*:*:*:*:*:*:* |
openafs | openafs | 1.4.15 | cpe:2.3:a:openafs:openafs:1.4.15:*:*:*:*:*:*:* |
openafs | openafs | 1.6.0 | cpe:2.3:a:openafs:openafs:1.6.0:*:*:*:*:*:*:* |
openafs | openafs | 1.6.1 | cpe:2.3:a:openafs:openafs:1.6.1:*:*:*:*:*:*:* |