rx/rx.c in OpenAFS 1.5.75 up to and including 1.5.78, 1.6.x prior to 1.6.15, and 1.7.x prior to 1.7.33 does not properly initialize padding at the end of an Rx acknowledgement (ACK) packet, which allows remote malicious users to obtain sensitive information by (1) conducting a replay attack or (2) sniffing the network.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openafs openafs 1.6.2 |
||
openafs openafs 1.6.3 |
||
openafs openafs 1.6.7 |
||
openafs openafs 1.6.8 |
||
openafs openafs 1.6.9 |
||
openafs openafs 1.7.10 |
||
openafs openafs 1.7.11 |
||
openafs openafs 1.7.18 |
||
openafs openafs 1.7.19 |
||
openafs openafs 1.7.26 |
||
openafs openafs 1.7.27 |
||
openafs openafs 1.7.8 |
||
openafs openafs 1.5.77 |
||
openafs openafs 1.5.78 |
||
openafs openafs 1.6.6 |
||
openafs openafs 1.6.5.1 |
||
openafs openafs 1.6.12 |
||
openafs openafs 1.6.13 |
||
openafs openafs 1.7.14 |
||
openafs openafs 1.7.15 |
||
openafs openafs 1.7.21 |
||
openafs openafs 1.7.22 |
||
openafs openafs 1.7.3 |
||
openafs openafs 1.7.30 |
||
openafs openafs 1.5.75 |
||
openafs openafs 1.5.76 |
||
openafs openafs 1.6.4 |
||
openafs openafs 1.6.5 |
||
openafs openafs 1.6.10 |
||
openafs openafs 1.6.11 |
||
openafs openafs 1.7.12 |
||
openafs openafs 1.7.13 |
||
openafs openafs 1.7.2 |
||
openafs openafs 1.7.20 |
||
openafs openafs 1.7.28 |
||
openafs openafs 1.7.29 |
||
openafs openafs 1.6.0 |
||
openafs openafs 1.6.1 |
||
openafs openafs 1.6.5.2 |
||
openafs openafs 1.6.2.1 |
||
openafs openafs 1.6.14 |
||
openafs openafs 1.7.1 |
||
openafs openafs 1.7.16 |
||
openafs openafs 1.7.17 |
||
openafs openafs 1.7.23 |
||
openafs openafs 1.7.24 |
||
openafs openafs 1.7.25 |
||
openafs openafs 1.7.31 |
||
openafs openafs 1.7.4 |