Описание
The vos command in OpenAFS 1.6.x before 1.6.5, when using the -encrypt option, only enables integrity protection and sends data in cleartext, which allows remote attackers to obtain sensitive information by sniffing the network.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1.6.5-1 |
| lucid | released | 1.4.12+dfsg-3+ubuntu0.3 |
| precise | released | 1.6.1-1+ubuntu0.2 |
| quantal | released | 1.6.1-2+ubuntu2.1 |
| raring | released | 1.6.2-1+ubuntu2.1 |
| upstream | released | 1.6.5 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
The vos command in OpenAFS 1.6.x before 1.6.5, when using the -encrypt option, only enables integrity protection and sends data in cleartext, which allows remote attackers to obtain sensitive information by sniffing the network.
The vos command in OpenAFS 1.6.x before 1.6.5, when using the -encrypt ...
The vos command in OpenAFS 1.6.x before 1.6.5, when using the -encrypt option, only enables integrity protection and sends data in cleartext, which allows remote attackers to obtain sensitive information by sniffing the network.
Уязвимости операционной системы Gentoo Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
4.3 Medium
CVSS2