CVE-2008-4552

🗓️ 14 Oct 2008 19:00:00Reported by redhatType

The good_client function in nfs-utils 1.0.9 invokes hosts_ctl function with wrong argument order allowing bypass of access restrictions

Reporter	Title	Published	Views	Family All 58
ATTACKERKB	CVE-2008-4552	14 Oct 200820:00	–	attackerkb
Tenable Nessus	CentOS 5 : nfs-utils (CESA-2009:1321)	6 Jan 201000:00	–	nessus
Tenable Nessus	GLSA-200903-06 : nfs-utils: Access restriction bypass	8 Mar 200900:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : nfs-utils (MDVSA-2009:060)	23 Apr 200900:00	–	nessus
Tenable Nessus	MiracleLinux 3 : nfs-utils-1.0.9-42.1AXS3 (AXSA:2009-391:02)	19 Jan 202600:00	–	nessus
Tenable Nessus	Oracle Linux 5 : nfs-utils (ELSA-2009-1321)	7 Sep 202300:00	–	nessus
Tenable Nessus	RHEL 5 : nfs-utils (RHSA-2009:1321)	2 Sep 200900:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : nfs-utils on SL5.x i386/x86_64	1 Aug 201200:00	–	nessus
Tenable Nessus	SuSE9 Security Update : nfs-utils (YOU Patch Number 12274)	24 Sep 200900:00	–	nessus
Tenable Nessus	SuSE 10 Security Update : nfs-utils (ZYPP Patch Number 5713)	24 Sep 200900:00	–	nessus

NVD

Node

nfs nfs-utilsRange≤1.1.2

nfs nfs-utilsMatch1.0.7pre-1

nfs nfs-utilsMatch1.0.7pre-2

nfs nfs-utilsMatch1.0.8rc-1

nfs nfs-utilsMatch1.0.8rc-2

nfs nfs-utilsMatch1.0.8rc-3

nfs nfs-utilsMatch1.0.8rc-4

nfs nfs-utilsMatch1.1.0rc-1

Source	Link
secunia	www.secunia.com/advisories/38794
openwall	www.openwall.com/lists/oss-security/2012/07/19/5
secunia	www.secunia.com/advisories/32346
redhat	www.redhat.com/support/errata/RHSA-2009-1321.html
vupen	www.vupen.com/english/advisories/2010/0528
exchange	www.exchange.xforce.ibmcloud.com/vulnerabilities/45895
securityfocus	www.securityfocus.com/archive/1/497935/100/0/threaded
ubuntu	www.ubuntu.com/usn/USN-687-1
secunia	www.secunia.com/advisories/32481
lists	www.lists.vmware.com/pipermail/security-announce/2010/000082.html

23 Apr 2026 00:35Current

7.5High risk

Vulners AI Score7.5

CVSS 27.5

EPSS0.01355