Computer Security
[EN] securityvulns.ru no-pyccku


nfs protection bypass
Published:02.11.2008
Source:
SecurityVulns ID:9398
Type:local
Threat Level:
5/10
Description:NIS netgroup restrictions are ignored by TCP Wrappers, allowing remote attackers to bypass intended access restrictions.
Affected:NFSUTILS : nfs-utils 1.0
 NFSUTILS : nfs-utils 1.1
CVE:CVE-2008-4552 (nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.)
Original documentdocumentRPATH, rPSA-2008-0307-1 nfs-client nfs-server nfs-utils (02.11.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod