Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-1251HistoryApr 09, 2009 - 12:30 a.m.
CVE-2009-1251
2009-04-0900:30:00
Debian Security Bug Tracker
security-tracker.debian.org
14
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.163
Percentile
96.0%
Heap-based buffer overflow in the cache manager in the client in OpenAFS 1.0 through 1.4.8 and 1.5.0 through 1.5.58 on Unix platforms allows remote attackers to cause a denial of service (system crash) or possibly execute arbitrary code via an RX response containing more data than specified in a request, related to use of XDR arrays.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | openafs | < 1.4.10+dfsg1-1 | openafs_1.4.10+dfsg1-1_all.deb |
| Debian | 11 | all | openafs | < 1.4.10+dfsg1-1 | openafs_1.4.10+dfsg1-1_all.deb |
| Debian | 999 | all | openafs | < 1.4.10+dfsg1-1 | openafs_1.4.10+dfsg1-1_all.deb |
Related
cvelist
cvelist
CVE-2009-1251
2009-04-09 00:00:00
nvd
nvd
CVE-2009-1251
2009-04-09 00:30:00
ubuntucve
ubuntucve
CVE-2009-1251
2009-04-09 00:00:00
cve
cve
CVE-2009-1251
2009-04-09 00:30:00
prion
prion
Heap overflow
2009-04-09 00:30:00
nessus
nessus
Mandriva Linux Security Advisory : openafs (MDVSA-2009:099-1)
2009-04-28 00:00:00
Debian DSA-1768-1 : openafs - several vulnerabilities
2009-04-11 00:00:00
openvas
openvas
Mandriva Security Advisory MDVSA-2009:099-1 (openafs)
2009-12-14 00:00:00
Gentoo Security Advisory GLSA 201101-05 (OpenAFS)
2011-03-09 00:00:00
Mandrake Security Advisory MDVSA-2009:099 (openafs)
2009-05-05 00:00:00
securityvulns
securityvulns
OpenAFS security vulnerabilities
2011-01-19 00:00:00
[SECURITY] [DSA 1768-1] New openafs packages potential code execution
2009-04-12 00:00:00
OpenAFS multiple security vulnerabilities
2009-04-12 00:00:00
debian
debian
[SECURITY] [DSA 1768-1] New openafs packages potential code execution
2009-04-10 14:51:13
[Backports-security-announce] Security Update for openafs
2009-04-10 21:48:30
[Backports-security-announce] Security Update for openafs
2009-04-10 21:38:35
osv
osv
openafs - potential code execution
2009-04-10 00:00:00
gentoo
gentoo
OpenAFS: Arbitrary code execution
2011-01-16 00:00:00
OpenAFS: Multiple vulnerabilities
2014-04-07 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.163
Percentile
96.0%
Related for DEBIANCVE:CVE-2009-1251