Download
| Alert*
oval:org.secpod.oval:def:16502
The host is installed with OpenAFS 1.6.x before 1.6.0500 or 1.7.x before 1.7.2600 or before 1.4.1500 and is prone to information disclosure vulnerability. The flaw is present in the application, which fails to handle the weak encryption (DES) for Kerberos keys. Successful exploitation allows the rem ... oval:org.secpod.oval:def:601077 OpenAFS, the implementation of the distributed filesystem AFS, has been updated to no longer use DES for the encryption of tickets. Additional migration steps are needed to fully set the update into effect |