Main Vulnerability Database Vulnerabilities #VU16767

Security restrictions bypass in OpenAFS - CVE-2018-16947

Published: January 1, 2019

Vulnerability identifier: #VU16767

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-16947

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: OpenAFS.org

Affected software:
OpenAFS

Detailed vulnerability description

The vulnerability allows a remote attacker to bypass security restrictions.

The vulnerability exists due to the backup tape controller (butc) process accepts incoming RPCs but does not require (or allow for) authentication of those RPCs. A remote attacker can perform handling of those RPCs with administrator credentials, including dumping/restoring volume contents and manipulating the backup database to replace any volume's content with arbitrary data.

How to mitigate CVE-2018-16947

The vulnerability has been addressed in the version 1.6.23, 1.8.2.

Sources

http://openafs.org/pages/security/OPENAFS-SA-2018-001.txt

Security restrictions bypass in OpenAFS - CVE-2018-16947

Detailed vulnerability description

How to mitigate CVE-2018-16947

Sources

Please verify you're human