Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openafs openafs vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-4044
OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote malicious users to cause a denial of service (uninitialized memory access and crash) via unspecified vectors related to TMAY requests.
Openafs Openafs 1.6.8
5
CVSSv2
CVE-2014-2852
OpenAFS prior to 1.6.7 delays the listen thread when an RXS_CheckResponse fails, which allows remote malicious users to cause a denial of service (performance degradation) via an invalid packet.
Openafs Openafs 1.6.5.2
Openafs Openafs 1.6.5.1
Openafs Openafs 1.6.5
Openafs Openafs 1.6.4
Openafs Openafs 1.6.0
Openafs Openafs
Openafs Openafs 1.6.3
Openafs Openafs 1.6.2
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.1
5
CVSSv2
CVE-2014-0159
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 prior to 1.6.7 allows remote malicious users to cause a denial of service (crash) via a crafted statsVersion argument.
Openafs Openafs 1.6.2
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.3
Openafs Openafs 1.6.4
Openafs Openafs 1.4.10
Openafs Openafs 1.4.11
Openafs Openafs 1.4.12
Openafs Openafs 1.4.14
Openafs Openafs 1.6.1
Openafs Openafs 1.6.5
Openafs Openafs 1.4.8
Openafs Openafs 1.4.15
Openafs Openafs 1.6.6
Openafs Openafs 1.6.0
Openafs Openafs 1.6.5.1
Openafs Openafs 1.4.9
Openafs Openafs 1.4.14.1
Openafs Openafs 1.6.5.2
Debian Debian Linux 7.0
4.3
CVSSv2
CVE-2013-4134
OpenAFS prior to 1.4.15, 1.6.x prior to 1.6.5, and 1.7.x prior to 1.7.26 uses weak encryption (DES) for Kerberos keys, which makes it easier for remote malicious users to obtain the service key.
Openafs Openafs 1.7.20
Openafs Openafs 1.7.19
Openafs Openafs 1.7.18
Openafs Openafs 1.7.17
Openafs Openafs 1.4.8 Pre3
Openafs Openafs 1.4.8 Pre2
Openafs Openafs 1.4.8 Pre1
Openafs Openafs 1.4.8
Openafs Openafs 1.4.7 Pre5
Openafs Openafs 1.4.1
Openafs Openafs 1.4.0
Openafs Openafs 1.4
Openafs Openafs 1.3.81
Openafs Openafs 1.2.3
Openafs Openafs 1.2.2b
Openafs Openafs 1.2.2a
Openafs Openafs 1.2.2
Openafs Openafs 1.0.2
Openafs Openafs 1.0.1
Openafs Openafs 1.0
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.2
4.3
CVSSv2
CVE-2013-4135
The vos command in OpenAFS 1.6.x prior to 1.6.5, when using the -encrypt option, only enables integrity protection and sends data in cleartext, which allows remote malicious users to obtain sensitive information by sniffing the network.
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.3
Openafs Openafs 1.6.4
Openafs Openafs 1.6.1
Openafs Openafs 1.6.0
Openafs Openafs 1.6.2
Debian Debian Linux 7.0
6.5
CVSSv2
CVE-2013-1794
Buffer overflow in certain client utilities in OpenAFS prior to 1.6.2 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long fileserver ACL entry.
Openafs Openafs 1.5.74
Openafs Openafs 1.5.73
Openafs Openafs 1.5.76
Openafs Openafs 1.5.75
Openafs Openafs 1.5.68
Openafs Openafs 1.5.67
Openafs Openafs 1.5.66
Openafs Openafs 1.5.65
Openafs Openafs 1.5.57
Openafs Openafs 1.5.56
Openafs Openafs 1.5.39
Openafs Openafs 1.5.38
Openafs Openafs 1.5.31
Openafs Openafs 1.5.30
Openafs Openafs 1.5.22
Openafs Openafs 1.5.21
Openafs Openafs 1.5.14
Openafs Openafs 1.5.13
Openafs Openafs
Openafs Openafs 1.6.0
Openafs Openafs 1.5.72
Openafs Openafs 1.5.71
5
CVSSv2
CVE-2013-1795
Integer overflow in ptserver in OpenAFS prior to 1.6.2 allows remote malicious users to cause a denial of service (crash) via a large list from the IdToName RPC, which triggers a heap-based buffer overflow.
Openafs Openafs 1.5.76
Openafs Openafs 1.5.75
Openafs Openafs 1.5.68
Openafs Openafs 1.5.67
Openafs Openafs 1.5.59
Openafs Openafs 1.5.78
Openafs Openafs 1.5.77
Openafs Openafs 1.5.70
Openafs Openafs 1.5.69
Openafs Openafs 1.5.61
Openafs Openafs 1.5.60
Openafs Openafs 1.5.53
Openafs Openafs 1.5.52
Openafs Openafs
Openafs Openafs 1.6.0
Openafs Openafs 1.5.72
Openafs Openafs 1.5.71
Openafs Openafs 1.5.64
Openafs Openafs 1.5.63
Openafs Openafs 1.5.62
Openafs Openafs 1.5.55
Openafs Openafs 1.5.54
7.5
CVSSv2
CVE-2011-0430
Double free vulnerability in the Rx server process in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions allows remote malicious users to cause a denial of service and execute arbitrary code via unknown vectors.
Openafs Openafs 1.4.14
Openafs Openafs 1.4.12
Openafs Openafs 1.4.7
5
CVSSv2
CVE-2011-0431
The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel module in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions does not properly handle errors, which allows malicious users to cause a denial of service via unknown vectors. NOTE: some of these details a...
Openafs Openafs 1.4.14
Openafs Openafs 1.4.12
Openafs Openafs 1.4.7
10
CVSSv2
CVE-2009-1251
Heap-based buffer overflow in the cache manager in the client in OpenAFS 1.0 up to and including 1.4.8 and 1.5.0 up to and including 1.5.58 on Unix platforms allows remote malicious users to cause a denial of service (system crash) or possibly execute arbitrary code via an RX res...
Unix Unix
Openafs Openafs 1.0.4a
Openafs Openafs 1.1.1a
Openafs Openafs 1.2.4
Openafs Openafs 1.2.11
Openafs Openafs 1.2.9
Openafs Openafs 1.2.6
Openafs Openafs 1.3
Openafs Openafs 1.3.1
Openafs Openafs 1.4.7
Openafs Openafs 1.0.4
Openafs Openafs 1.1.1
Openafs Openafs 1.1
Openafs Openafs 1.2.3
Openafs Openafs 1.2.13
Openafs Openafs 1.2.7
Openafs Openafs 1.3.5
Openafs Openafs 1.4.7 Pre2
Openafs Openafs 1.4.7 Pre1
Openafs Openafs 1.4
Openafs Openafs 1.4.5
Openafs Openafs 1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »