Published: 12/09/2018 Updated: 03/10/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

An issue exists in OpenAFS prior to 1.6.23 and 1.8.x prior to 1.8.2. The backup tape controller (butc) process accepts incoming RPCs but does not require (or allow for) authentication of those RPCs. Handling those RPCs results in operations being performed with administrator credentials, including dumping/restoring volume contents and manipulating the backup database. For example, an unauthenticated attacker can replace any volume's content with arbitrary data.

Vulnerable Product	Search on Vulmon	Subscribe to Product
openafs openafs
debian debian linux 8.0
debian debian linux 9.0

Debian Bug report logs - #908616 OpenAFS security release Package: src:openafs; Maintainer for src:openafs is Benjamin Kaduk <kaduk@mitedu>; Reported by: Benjamin Kaduk <kaduk@mitedu> Date: Tue, 11 Sep 2018 19:39:01 UTC Severity: serious Tags: security Found in versions openafs/169-1, openafs/169-2+deb8u7 Fixe ...

Several vulnerabilities were discovered in openafs, an implementation of the distributed filesystem AFS The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2018-16947 Jeffrey Altman reported that the backup tape controller (butc) process does accept incoming RPCs but does not require (or allow for) ...

CWE-287 http://openafs.org/pages/security/OPENAFS-SA-2018-001.txt https://lists.debian.org/debian-lts-announce/2018/09/msg00024.html https://www.debian.org/security/2018/dsa-4302 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908616 https://nvd.nist.gov https://www.debian.org/security/./dsa-4302

CVE-2018-16947

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect