Computer Security
[EN] securityvulns.ru no-pyccku


FreeBSD NFS client privilege escalation
Published:28.05.2010
Source:
SecurityVulns ID:10879
Type:local
Threat Level:
6/10
Description:Buffer overflow and memory corruption on volume mounting.
Affected:FREEBSD : FreeBSD 7.2
 FREEBSD : FreeBSD 8.0
 FREEBSD : FreeBSD 7.3
CVE:CVE-2010-2020 (sys/nfsclient/nfs_vfsops.c in the NFS client in the kernel in FreeBSD 7.2 through 8.1-PRERELEASE, when vfs.usermount is enabled, does not validate the length of a certain fhsize parameter, which allows local users to gain privileges via a crafted mount request.)
Original documentdocumentFREEBSD, FreeBSD Security Advisory FreeBSD-SA-10:06.nfsclient (28.05.2010)
 documentPatroklos Argyroudis, CVE-2010-2020: FreeBSD kernel NFS client local vulnerabilities (28.05.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod