Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openafs vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-4044
OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote malicious users to cause a denial of service (uninitialized memory access and crash) via unspecified vectors related to TMAY requests.
Openafs Openafs 1.6.8
5
CVSSv2
CVE-2014-2852
OpenAFS prior to 1.6.7 delays the listen thread when an RXS_CheckResponse fails, which allows remote malicious users to cause a denial of service (performance degradation) via an invalid packet.
Openafs Openafs 1.6.5.2
Openafs Openafs 1.6.5.1
Openafs Openafs 1.6.5
Openafs Openafs 1.6.4
Openafs Openafs 1.6.0
Openafs Openafs
Openafs Openafs 1.6.3
Openafs Openafs 1.6.2
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.1
5
CVSSv2
CVE-2014-0159
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 prior to 1.6.7 allows remote malicious users to cause a denial of service (crash) via a crafted statsVersion argument.
Openafs Openafs 1.6.2
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.3
Openafs Openafs 1.6.4
Openafs Openafs 1.4.10
Openafs Openafs 1.4.11
Openafs Openafs 1.4.12
Openafs Openafs 1.4.14
Openafs Openafs 1.6.1
Openafs Openafs 1.6.5
Openafs Openafs 1.4.8
Openafs Openafs 1.4.15
Openafs Openafs 1.6.6
Openafs Openafs 1.6.0
Openafs Openafs 1.6.5.1
Openafs Openafs 1.4.9
Openafs Openafs 1.4.14.1
Openafs Openafs 1.6.5.2
Debian Debian Linux 7.0
4.3
CVSSv2
CVE-2013-4134
OpenAFS prior to 1.4.15, 1.6.x prior to 1.6.5, and 1.7.x prior to 1.7.26 uses weak encryption (DES) for Kerberos keys, which makes it easier for remote malicious users to obtain the service key.
Openafs Openafs 1.7.20
Openafs Openafs 1.7.19
Openafs Openafs 1.7.18
Openafs Openafs 1.7.17
Openafs Openafs 1.4.8 Pre3
Openafs Openafs 1.4.8 Pre2
Openafs Openafs 1.4.8 Pre1
Openafs Openafs 1.4.8
Openafs Openafs 1.4.7 Pre5
Openafs Openafs 1.4.1
Openafs Openafs 1.4.0
Openafs Openafs 1.4
Openafs Openafs 1.3.81
Openafs Openafs 1.2.3
Openafs Openafs 1.2.2b
Openafs Openafs 1.2.2a
Openafs Openafs 1.2.2
Openafs Openafs 1.0.2
Openafs Openafs 1.0.1
Openafs Openafs 1.0
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.2
4.3
CVSSv2
CVE-2013-4135
The vos command in OpenAFS 1.6.x prior to 1.6.5, when using the -encrypt option, only enables integrity protection and sends data in cleartext, which allows remote malicious users to obtain sensitive information by sniffing the network.
Openafs Openafs 1.6.2.1
Openafs Openafs 1.6.3
Openafs Openafs 1.6.4
Openafs Openafs 1.6.1
Openafs Openafs 1.6.0
Openafs Openafs 1.6.2
Debian Debian Linux 7.0
5
CVSSv2
CVE-2013-1795
Integer overflow in ptserver in OpenAFS prior to 1.6.2 allows remote malicious users to cause a denial of service (crash) via a large list from the IdToName RPC, which triggers a heap-based buffer overflow.
Openafs Openafs 1.5.76
Openafs Openafs 1.5.75
Openafs Openafs 1.5.68
Openafs Openafs 1.5.67
Openafs Openafs 1.5.59
Openafs Openafs 1.5.78
Openafs Openafs 1.5.77
Openafs Openafs 1.5.70
Openafs Openafs 1.5.69
Openafs Openafs 1.5.61
Openafs Openafs 1.5.60
Openafs Openafs 1.5.53
Openafs Openafs 1.5.52
Openafs Openafs
Openafs Openafs 1.6.0
Openafs Openafs 1.5.72
Openafs Openafs 1.5.71
Openafs Openafs 1.5.64
Openafs Openafs 1.5.63
Openafs Openafs 1.5.62
Openafs Openafs 1.5.55
Openafs Openafs 1.5.54
6.5
CVSSv2
CVE-2013-1794
Buffer overflow in certain client utilities in OpenAFS prior to 1.6.2 allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long fileserver ACL entry.
Openafs Openafs 1.5.74
Openafs Openafs 1.5.73
Openafs Openafs 1.5.76
Openafs Openafs 1.5.75
Openafs Openafs 1.5.68
Openafs Openafs 1.5.67
Openafs Openafs 1.5.66
Openafs Openafs 1.5.65
Openafs Openafs 1.5.57
Openafs Openafs 1.5.56
Openafs Openafs 1.5.39
Openafs Openafs 1.5.38
Openafs Openafs 1.5.31
Openafs Openafs 1.5.30
Openafs Openafs 1.5.22
Openafs Openafs 1.5.21
Openafs Openafs 1.5.14
Openafs Openafs 1.5.13
Openafs Openafs
Openafs Openafs 1.6.0
Openafs Openafs 1.5.72
Openafs Openafs 1.5.71
7.5
CVSSv2
CVE-2011-0430
Double free vulnerability in the Rx server process in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions allows remote malicious users to cause a denial of service and execute arbitrary code via unknown vectors.
Openafs Openafs 1.4.14
Openafs Openafs 1.4.12
Openafs Openafs 1.4.7
5
CVSSv2
CVE-2011-0431
The afs_linux_lock function in afs/LINUX/osi_vnodeops.c in the kernel module in OpenAFS 1.4.14, 1.4.12, 1.4.7, and possibly other versions does not properly handle errors, which allows malicious users to cause a denial of service via unknown vectors. NOTE: some of these details a...
Openafs Openafs 1.4.14
Openafs Openafs 1.4.12
Openafs Openafs 1.4.7
7.8
CVSSv2
CVE-2009-1250
The cache manager in the client in OpenAFS 1.0 up to and including 1.4.8 and 1.5.0 up to and including 1.5.58, and IBM AFS 3.6 before Patch 19, on Linux allows remote malicious users to cause a denial of service (system crash) via an RX response with a large error-code value that...
Openafs Openafs 1.0.1
Openafs Openafs 1.0.4a
Openafs Openafs 1.2.1
Openafs Openafs 1.2.5
Openafs Openafs 1.5
Openafs Openafs 1.3.5
Openafs Openafs 1.4.3
Openafs Openafs 1.4.5
Openafs Openafs 1.5.16
Openafs Openafs 1.5.33
Openafs Openafs 1.5.34
Openafs Openafs 1.0
Openafs Openafs 1.0.2
Openafs Openafs 1.2.2a
Openafs Openafs 1.2.2
Openafs Openafs 1.2.6
Openafs Openafs 1.2.7
Openafs Openafs 1.3
Openafs Openafs 1.3.1
Openafs Openafs 1.5.31
Openafs Openafs 1.5.32
Openafs Openafs 1.5.50
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »