OpenAFS.GetStatistics64.RPC.Buffer.Overflow
Description
This indicates an attack attempt against a Buffer Overflow vulnerability in the OpenAFS.
The vulnerability is caused by improper validation of user supplied data in the "GetStatistics64" function. An attacker can exploit this by sending crafted packets to the vulnerable machine and execute arbitrary codes within the context of the application. Also a remote attacker may be able to exploit this to cause a denial of service condition on the affected system.
Affected Products
OpenAFS.org OpenAFS prior to 1.6.7
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |