MISC: OpenAFS GetStatistics64 RPC Buffer Overflow
This signature detects attempts to create buffer overflows on OpenAFS, an open source implementation of the Andrew File System. Attackers can send maliciously crafted packets to UDP/7000 to overflow the buffer and resulting in a denial of service.
Extended Description
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
Affected Products
Debian debian_linux
References
CVE: CVE-2014-0159
Short Name
MISC:OPENAFS-RPC-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
MISC
Keywords
Buffer CVE-2014-0159 GetStatistics64 OpenAFS Overflow RPC
Release Date
04/23/2014
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
Port
UDP/7000
False Positive
Unknown
Vendors
Openafs
Debian
CVSS Score
5.0