Computer Security

nfs-utils rpc.gssd privilege escalation

back  news / advisories / software / search /  forward
[EN] securityvulns.ru no-pyccku


nfs-utils rpc.gssd privilege escalation
Published:01.07.2013
Source:
SecurityVulns ID:13148
Type:remote
Threat Level:
4/10
Description:Unsafe PTR DNS record resoulution is used in a security related operation.
Affected:NFSUTILS : nfs-utils 1.2
CVE:CVE-2013-1923 (rpc-gssd in nfs-utils before 1.2.8 performs reverse DNS resolution for server names during GSSAPI authentication, which might allow remote attackers to read otherwise-restricted files via DNS spoofing attacks.)
Original documentdocumentMANDRIVA, [ MDVSA-2013:178 ] nfs-utils (01.07.2013)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod