CVE-2014-0159

N/A Unknown

Published: April 14, 2014 Modified: May 06, 2026

Description

Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://openafs.org/pages/security/OPENAFS-SA-2014-001.txt

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/57779

Source: secalert@redhat.com

Permissions Required Third Party Advisory

http://secunia.com/advisories/57832

Source: secalert@redhat.com

Permissions Required Third Party Advisory

http://www.debian.org/security/2014/dsa-2899

Source: secalert@redhat.com

Third Party Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2014:244

Source: secalert@redhat.com

Broken Link

http://www.openafs.org/frameset/dl/openafs/1.6.7/ChangeLog

Source: secalert@redhat.com

Issue Tracking Release Notes

http://openafs.org/pages/security/OPENAFS-SA-2014-001.txt