OpenAFS 1.7.25

CPE Details

OpenAFS 1.7.25
openafs
openafs
1.7.25
2013-11-06
16h42 +00:00
2013-11-07
18h52 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:openafs:openafs:1.7.25:*:*:*:*:*:*:*

Informations

Vendor

openafs

Product

openafs

Version

1.7.25

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2015-7762 2015-11-06 20h00 +00:00 rx/rx.c in OpenAFS before 1.6.15 and 1.7.x before 1.7.33 does not properly initialize the padding of a data structure when constructing an Rx acknowledgement (ACK) packet, which allows remote attackers to obtain sensitive information by (1) conducting a replay attack or (2) sniffing the network.
5
CVE-2015-7763 2015-11-06 20h00 +00:00 rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and 1.7.x before 1.7.33 does not properly initialize padding at the end of an Rx acknowledgement (ACK) packet, which allows remote attackers to obtain sensitive information by (1) conducting a replay attack or (2) sniffing the network.
5
CVE-2013-4134 2013-11-05 20h00 +00:00 OpenAFS before 1.4.15, 1.6.x before 1.6.5, and 1.7.x before 1.7.26 uses weak encryption (DES) for Kerberos keys, which makes it easier for remote attackers to obtain the service key.
4.3