Computer Security

nfs protection bypass
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



nfs protection bypass
Published:02.11.2008
Source:BUGTRAQ
SecurityVulns ID:9398
Type:local
Level:5/10
Description:NIS netgroup restrictions are ignored by TCP Wrappers, allowing remote attackers to bypass intended access restrictions.
Affected:NFSUTILS : nfs-utils 1.0
 NFSUTILS : nfs-utils 1.1
CVE:CVE-2008-4552 (nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.)
Original documentdocumentRPATH, rPSA-2008-0307-1 nfs-client nfs-server nfs-utils (02.11.2008)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru