CVE-2013-1795 Information

Description

Integer overflow in ptserver in OpenAFS before 1.6.2 allows remote attackers to cause a denial of service (crash) via a large list from the IdToName RPC which triggers a heap-based buffer overflow.

Reference

http://secunia.com/advisories/52342 http://secunia.com/advisories/52480 http://www.debian.org/security/2013/dsa-2638 http://www.mandriva.com/security/advisories?name=MDVSA-2014:244 http://www.openafs.org/pages/security/OPENAFS-SA-2013-002.txt http://www.securityfocus.com/bid/58300 https://exchange.xforce.ibmcloud.com/vulnerabilities/82585