CVE-2013-4134

EPSS 0.15%

openafs - several

Published: 11/5/2013Modified: 4/28/2026

Also known as:DEBIAN-CVE-2013-4134

Description

OpenAFS before 1.4.15, 1.6.x before 1.6.5, and 1.7.x before 1.7.26 uses weak encryption (DES) for Kerberos keys, which makes it easier for remote attackers to obtain the service key.

Affected packages (2)

Debian/openafsfrom 0, < 1.6.5-1
Debian/openafsfrom 0, < 1.4.12.1+dfsg-4+squeeze2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2013-4134