Vulnerability Name:

CVE-2016-4536 (CCN-113000)

Assigned:2016-05-05
Published:2016-05-05
Updated:2016-05-19
Summary:The client in OpenAFS before 1.6.17 does not properly initialize the (1) AFSStoreStatus, (2) AFSStoreVolumeStatus, (3) VldbListByAttributes, and (4) ListAddrByAttributes structures, which might allow remote attackers to obtain sensitive memory information by leveraging access to RPC call traffic.
CVSS v3 Severity:5.3 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.6 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-200
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2016-4536

Source: CCN
Type: oss-sec Mailing List, Thu, 5 May 2016 15:32:01 +0200
CVE Request: OpenAFS: OPENAFS-SA-2016-002 - various client functionality leak stack data onto the wire in the clear

Source: CCN
Type: oss-sec Mailing List, Thu, 5 May 2016 17:59:43 -0400 (EDT)
Re: CVE Request: OpenAFS: OPENAFS-SA-2016-002 - various client functionality leak stack data onto the wire in the clear

Source: XF
Type: UNKNOWN
openafs-cve20164536-info-disc(113000)

Source: MLIST
Type: Vendor Advisory
[OpenAFS-announce] 20160316 OpenAFS security release 1.6.17 available

Source: CONFIRM
Type: Vendor Advisory
https://www.openafs.org/dl/openafs/1.6.17/RELNOTES-1.6.17

Source: CCN
Type: OpenAFS Security Advisory 2016-002
Topic: information leakage from client memory

Source: CONFIRM
Type: Vendor Advisory
https://www.openafs.org/pages/security/OPENAFS-SA-2016-002.txt

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2016-4536

Vulnerable Configuration:Configuration 1:
  • cpe:/a:openafs:openafs:*:*:*:*:*:*:*:* (Version <= 1.6.16)

    • Configuration CCN 1:
  • cpe:/a:openafs:openafs:1.6.16:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:com.ubuntu.bionic:def:201645360000000
    V
    		CVE-2016-4536 on Ubuntu 18.04 LTS (bionic) - medium.
    2016-05-13
    oval:com.ubuntu.artful:def:20164536000
    V
    		CVE-2016-4536 on Ubuntu 17.10 (artful) - medium.
    2016-05-13
    oval:com.ubuntu.trusty:def:20164536000
    V
    		CVE-2016-4536 on Ubuntu 14.04 LTS (trusty) - medium.
    2016-05-13
    oval:com.ubuntu.xenial:def:201645360000000
    V
    		CVE-2016-4536 on Ubuntu 16.04 LTS (xenial) - medium.
    2016-05-13
    oval:com.ubuntu.bionic:def:20164536000
    V
    		CVE-2016-4536 on Ubuntu 18.04 LTS (bionic) - medium.
    2016-05-13
    oval:com.ubuntu.xenial:def:20164536000
    V
    		CVE-2016-4536 on Ubuntu 16.04 LTS (xenial) - medium.
    2016-05-13
    oval:com.ubuntu.disco:def:201645360000000
    V
    		CVE-2016-4536 on Ubuntu 19.04 (disco) - medium.
    2016-05-13
    oval:com.ubuntu.cosmic:def:20164536000
    V
    		CVE-2016-4536 on Ubuntu 18.10 (cosmic) - medium.
    2016-05-13
    oval:com.ubuntu.cosmic:def:201645360000000
    V
    		CVE-2016-4536 on Ubuntu 18.10 (cosmic) - medium.
    2016-05-13
    oval:com.ubuntu.precise:def:20164536000
    V
    		CVE-2016-4536 on Ubuntu 12.04 LTS (precise) - medium.
    2016-05-13
    BACK
    openafs openafs *
    openafs openafs 1.6.16