CVE-2015-7763
EPSS 0.47%Published: 11/6/2015Modified: 4/28/2026
Also known as:DEBIAN-CVE-2015-7763
Description
rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and 1.7.x before 1.7.33 does not properly initialize padding at the end of an Rx acknowledgement (ACK) packet, which allows remote attackers to obtain sensitive information by (1) conducting a replay attack or (2) sniffing the network.
Affected packages (1)
- Debian/openafsfrom 0, < 1.6.15-1