OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserver vice partition, or (3) certain RPC responses.
References
Link | Resource |
---|---|
http://www.openwall.com/lists/oss-security/2016/12/02/9 | Mailing List Patch Third Party Advisory |
http://www.securityfocus.com/bid/94651 | Third Party Advisory VDB Entry |
https://www.openafs.org/pages/security/OPENAFS-SA-2016-003.txt | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2017-02-06T17:00:00
Updated: 2017-02-06T16:57:01
Reserved: 2016-12-02T00:00:00
Link: CVE-2016-9772
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-02-06T17:59:00.467
Modified: 2017-02-08T18:46:04.867
Link: CVE-2016-9772
JSON object: View
Redhat Information
No data.
CWE