Lucene search
RedhatCVE-2014-0159HistoryApr 14, 2014 - 3:09 p.m.
CVE-2014-0159
2014-04-1415:09:05
CWE-119
redhat
web.nvd.nist.gov
31
cve-2014-0159
buffer overflow
getstatistics64
rpc
openafs
denial of service
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.5
Confidence
Low
EPSS
0.3
Percentile
97.0%
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
Affected configurations
Node
openafsopenafsMatch1.4.8
ORopenafsopenafsMatch1.4.9
ORopenafsopenafsMatch1.4.10
ORopenafsopenafsMatch1.4.11
ORopenafsopenafsMatch1.4.12
ORopenafsopenafsMatch1.4.14
ORopenafsopenafsMatch1.4.14.1
ORopenafsopenafsMatch1.4.15
ORopenafsopenafsMatch1.6.0
ORopenafsopenafsMatch1.6.1
ORopenafsopenafsMatch1.6.2
ORopenafsopenafsMatch1.6.2.1
ORopenafsopenafsMatch1.6.3
ORopenafsopenafsMatch1.6.4
ORopenafsopenafsMatch1.6.5
ORopenafsopenafsMatch1.6.5.1
ORopenafsopenafsMatch1.6.5.2
ORopenafsopenafsMatch1.6.6
Node
debiandebian_linuxMatch7.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| openafs | openafs | 1.4.8 | cpe:2.3:a:openafs:openafs:1.4.8:*:*:*:*:*:*:* |
| openafs | openafs | 1.4.9 | cpe:2.3:a:openafs:openafs:1.4.9:*:*:*:*:*:*:* |
| openafs | openafs | 1.4.10 | cpe:2.3:a:openafs:openafs:1.4.10:*:*:*:*:*:*:* |
| openafs | openafs | 1.4.11 | cpe:2.3:a:openafs:openafs:1.4.11:*:*:*:*:*:*:* |
| openafs | openafs | 1.4.12 | cpe:2.3:a:openafs:openafs:1.4.12:*:*:*:*:*:*:* |
| openafs | openafs | 1.4.14 | cpe:2.3:a:openafs:openafs:1.4.14:*:*:*:*:*:*:* |
| openafs | openafs | 1.4.14.1 | cpe:2.3:a:openafs:openafs:1.4.14.1:*:*:*:*:*:*:* |
| openafs | openafs | 1.4.15 | cpe:2.3:a:openafs:openafs:1.4.15:*:*:*:*:*:*:* |
| openafs | openafs | 1.6.0 | cpe:2.3:a:openafs:openafs:1.6.0:*:*:*:*:*:*:* |
| openafs | openafs | 1.6.1 | cpe:2.3:a:openafs:openafs:1.6.1:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2014-0159
2014-04-14 00:00:00
prion
prion
Buffer overflow
2014-04-14 15:09:00
cvelist
cvelist
CVE-2014-0159
2014-04-14 15:00:00
securityvulns
securityvulns
OpenAFS DoS
2014-05-05 00:00:00
[SECURITY] [DSA 2899-1] openafs security update
2014-05-05 00:00:00
debian
debian
[SECURITY] [DSA 2899-1] openafs security update
2014-04-09 19:59:09
nessus
nessus
debiancve
debiancve
CVE-2014-0159
2014-04-14 15:09:05
freebsd
freebsd
openafs -- Denial of Service
2014-04-09 00:00:00
libaudiofile -- heap-based overflow in Microsoft ADPCM compression module
2008-12-30 00:00:00
nvd
nvd
CVE-2014-0159
2014-04-14 15:09:05
seebug
seebug
OpenAFS GetStatistics64 RPCθΏη¨ζη»ζε‘ζΌζ΄
2014-04-17 00:00:00
openvas
openvas
Debian Security Advisory DSA 2899-1 (openafs - security update)
2014-04-09 00:00:00
Debian: Security Advisory (DSA-2899-1)
2014-04-08 00:00:00
Mageia: Security Advisory (MGASA-2014-0515)
2022-01-28 00:00:00
osv
osv
openafs - security update
2014-04-09 00:00:00
mageia
mageia
Updated openafs packages fix security vulnerabilies
2014-12-09 23:12:41
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
6.5
Confidence
Low
EPSS
0.3
Percentile
97.0%
Related for CVE-2014-0159