Afs3-fileserver Exploit |work| ★ Validated & Direct

A recent vulnerability CVE-2021-47366 affected the Linux kernel's AFS client. It caused data corruption during file reads from an OpenAFS server specifically when handling file positions between 2G and 4G, due to incorrect handling of signed 32-bit values in the FetchData RPC.

# Intercept a valid token request def intercept_token_request(): # Create a socket to intercept the token request sock = socket.socket(socket.AF_INET, socket.SOCK_STREAM) sock.connect(('afs3-server', 7000)) afs3-fileserver exploit

Common Vulnerability Classes