Arbitrary code execution vulnerability in OpenAFS - CVE-2018-16947ID: oval:org.secpod.oval:def:47538 | Date: (C)2018-09-20 (M)2022-08-20 |
Class: VULNERABILITY | Family: windows |
The host is installed with OpenAFS before 1.6.2300 and is prone to an arbitrary code execution vulnerability. The flaw is present in the application, which fails to handle the authentication of incoming RPCs. Successful exploitation allow remote attackers to replace any volume's content with arbitrary data.
Platform: |
Microsoft Windows 7 |
Microsoft Windows 8 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows XP |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |
Microsoft Windows Vista |
Microsoft Windows Server 2019 |