OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
BID:106375
CVE-2018-16949 |Info
OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
| Bugtraq ID: | 106375 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2018-16949 |
| Remote: | Yes |
| Local: | No |
| Published: | Sep 11 2019 12:00AM |
| Updated: | Sep 11 2019 12:00AM |
| Credit: | Mark Vitale |
| Vulnerable: |
OpenAFS Openafs 1.8.1 OpenAFS Openafs 1.8 OpenAFS Openafs 1.6.22 OpenAFS Openafs 1.6.21 OpenAFS Openafs 1.6.20 OpenAFS Openafs 1.6.17 OpenAFS Openafs 1.6.15 OpenAFS Openafs 1.6.14 OpenAFS Openafs 1.6.13 OpenAFS Openafs 1.6.12 OpenAFS Openafs 1.6.11 OpenAFS Openafs 1.6.10 OpenAFS Openafs 1.6.2 .1 OpenAFS OpenAFS 1.6.2 OpenAFS OpenAFS 1.6.1 OpenAFS OpenAFS 1.6 OpenAFS Openafs 1.5.78 OpenAFS Openafs 1.5.77 OpenAFS Openafs 1.5.76 OpenAFS Openafs 1.5.75 OpenAFS OpenAFS 1.5.58 OpenAFS OpenAFS 1.5.28 OpenAFS OpenAFS 1.5.27 OpenAFS OpenAFS 1.5.19 OpenAFS OpenAFS 1.5.18 OpenAFS OpenAFS 1.5.17 OpenAFS OpenAFS 1.5.16 OpenAFS OpenAFS 1.5.15 OpenAFS OpenAFS 1.5.14 OpenAFS OpenAFS 1.5.13 OpenAFS OpenAFS 1.5.12 OpenAFS OpenAFS 1.5.11 OpenAFS OpenAFS 1.5.10 OpenAFS OpenAFS 1.5.9 OpenAFS OpenAFS 1.5.8 OpenAFS OpenAFS 1.5.7 OpenAFS OpenAFS 1.5.6 OpenAFS OpenAFS 1.5.5 OpenAFS OpenAFS 1.5.4 OpenAFS OpenAFS 1.5.3 OpenAFS OpenAFS 1.5.2 OpenAFS OpenAFS 1.5.1 OpenAFS OpenAFS 1.5 OpenAFS OpenAFS 1.4.15 OpenAFS Openafs 1.4.10 OpenAFS OpenAFS 1.4.8 OpenAFS OpenAFS 1.4.6 OpenAFS OpenAFS 1.4.5 OpenAFS OpenAFS 1.4.4 OpenAFS OpenAFS 1.4.3 OpenAFS OpenAFS 1.4.2 OpenAFS OpenAFS 1.4.1 OpenAFS OpenAFS 1.4 OpenAFS OpenAFS 1.3.81 OpenAFS OpenAFS 1.3.64 OpenAFS OpenAFS 1.3.50 OpenAFS OpenAFS 1.3.2 OpenAFS OpenAFS 1.3.1 OpenAFS OpenAFS 1.3 OpenAFS OpenAFS 1.2.9 OpenAFS OpenAFS 1.2.8 OpenAFS OpenAFS 1.2.7 OpenAFS OpenAFS 1.2.6 OpenAFS OpenAFS 1.2.5 OpenAFS OpenAFS 1.2.4 OpenAFS OpenAFS 1.2.3 OpenAFS OpenAFS 1.2.2 b OpenAFS OpenAFS 1.2.2 a OpenAFS OpenAFS 1.2.2 OpenAFS OpenAFS 1.2.1 OpenAFS OpenAFS 1.2 OpenAFS OpenAFS 1.1.1 a OpenAFS OpenAFS 1.1.1 OpenAFS OpenAFS 1.1 OpenAFS OpenAFS 1.0.4 a OpenAFS OpenAFS 1.0.4 OpenAFS OpenAFS 1.0.3 OpenAFS OpenAFS 1.0.2 OpenAFS OpenAFS 1.0.1 OpenAFS OpenAFS 1.0 OpenAFS Openafs 1.8.1.1 OpenAFS Openafs 1.6.22.4 OpenAFS Openafs 1.6.19 OpenAFS Openafs 1.6.18 OpenAFS Openafs 1.4.9 OpenAFS Openafs 1.4.14.1 OpenAFS OpenAFS 1.4.14 OpenAFS OpenAFS 1.4.13 OpenAFS Openafs 1.4.12 OpenAFS Openafs 1.4.11 Debian Linux 9.0 Debian Linux 8.0 |
| Not Vulnerable: |
OpenAFS Openafs 1.8.2 OpenAFS Openafs 1.6.23 |
Discussion
OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
OpenAFS is prone to multiple denial-of-service vulnerabilities.
Successful exploitation of these issues will cause excessive resource consumption, resulting in a denial-of-service condition.
OpenAFS 1.0 through 1.6.22.4 and 1.8.0 through 1.8.1.1 are vulnerable.
OpenAFS is prone to multiple denial-of-service vulnerabilities.
Successful exploitation of these issues will cause excessive resource consumption, resulting in a denial-of-service condition.
OpenAFS 1.0 through 1.6.22.4 and 1.8.0 through 1.8.1.1 are vulnerable.
Exploit / POC
OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
OpenAFS CVE-2018-16949 Multiple Denial of Service Vulnerabilities
References:
References:
- OpenAFS Product Page (OpenAFS)
- OpenAFS Security Advisory-2018-003 (OpenAFS)