exploitDog

CVE-2015-3282

Опубликовано: 12 авг. 2015

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remote attackers to obtain stack data by sniffing the network.

Ссылки

http://www.debian.org/security/2015/dsa-3320
http://www.openafs.org/pages/security/OPENAFS-SA-2015-001.txt
Vendor Advisory
http://www.securitytracker.com/id/1033262
https://lists.openafs.org/pipermail/openafs-announce/2015/000486.html
Vendor Advisory
https://www.openafs.org/dl/openafs/1.6.13/RELNOTES-1.6.13
Vendor Advisory
http://www.debian.org/security/2015/dsa-3320
http://www.openafs.org/pages/security/OPENAFS-SA-2015-001.txt
Vendor Advisory
http://www.securitytracker.com/id/1033262
https://lists.openafs.org/pipermail/openafs-announce/2015/000486.html
Vendor Advisory
https://www.openafs.org/dl/openafs/1.6.13/RELNOTES-1.6.13
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:openafs:openafs:*:*:*:*:*:*:*:*

Версия до 1.6.12 (включая)

EPSS

Процентиль: 64%

0.00472

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2015-3282

ubuntu

больше 10 лет назад

vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remote attackers to obtain stack data by sniffing the network.

CVE-2015-3282

debian

больше 10 лет назад

vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remot ...

GHSA-2j3g-mmqf-22pf

github

больше 3 лет назад

vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remote attackers to obtain stack data by sniffing the network.

EPSS

Процентиль: 64%

0.00472

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200