CVE-2016-9772

OpenAFS 1.6.19 and earlier allows remote attackers to obtain sensitive directory information via vectors involving the (1) client cache partition, (2) fileserver vice partition, or (3) certain RPC responses.
References
Link Resource
http://www.openwall.com/lists/oss-security/2016/12/02/9 Mailing List Patch Third Party Advisory
http://www.securityfocus.com/bid/94651 Third Party Advisory VDB Entry
https://www.openafs.org/pages/security/OPENAFS-SA-2016-003.txt Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:openafs:openafs:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2017-02-06 17:59

Updated : 2024-02-04 19:11


NVD link : CVE-2016-9772

Mitre link : CVE-2016-9772

CVE.ORG link : CVE-2016-9772


JSON object : View

Products Affected

openafs

  • openafs
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor