{
  "modified": "2025-09-17T16:00:22Z",
  "published": "2014-04-14T15:09:05Z",
  "id": "CVE-2014-0159",
  "details": "Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://openafs.org/pages/security/OPENAFS-SA-2014-001.txt"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/57779"
    },
    {
      "type": "ADVISORY",
      "url": "http://secunia.com/advisories/57832"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.debian.org/security/2014/dsa-2899"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:244"
    },
    {
      "type": "ADVISORY",
      "url": "http://www.openafs.org/frameset/dl/openafs/1.6.7/ChangeLog"
    },
    {
      "type": "REPORT",
      "url": "http://secunia.com/advisories/57779"
    },
    {
      "type": "REPORT",
      "url": "http://secunia.com/advisories/57832"
    },
    {
      "type": "REPORT",
      "url": "http://www.openafs.org/frameset/dl/openafs/1.6.7/ChangeLog"
    }
  ]
}
