CVE-2014-4044
EPSS 0.60%
Description
OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote attackers to cause a denial of service (uninitialized memory access and crash) via unspecified vectors related to TMAY requests.
How to fix CVE-2014-4044
To remediate CVE-2014-4044, upgrade the affected package to a fixed version below.
- Debian/openafs—upgrade to 1.6.9-1 or later
Is CVE-2014-4044 being exploited?
Low — EPSS is 0.6%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.6.9-1