FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

openafs -- single-DES cell-wide key brute force vulnerability

Affected packages
openafs < 1.6.5

Details

VuXML ID c4d412c8-f4d1-11e2-b86c-000c295229d5
Discovery 2013-07-24
Entry 2013-07-25

OpenAFS Project reports:

The small size of the DES key space permits an attacker to brute force a cell's service key and then forge traffic from any user within the cell. The key space search can be performed in under 1 day at a cost of around $100 using publicly available services.

References

CVE Name CVE-2013-4134
URL http://openafs.org/pages/security/how-to-rekey.txt
URL http://openafs.org/pages/security/install-rxkad-k5-1.6.txt
URL http://openafs.org/pages/security/OPENAFS-SA-2013-003.txt