CVE-2009-2296
6.9 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.019 Low
EPSS
Percentile
88.5%
The NFSv4 server kernel module in Sun Solaris 10, and OpenSolaris before snv_119, does not properly implement the nfs_portmon setting, which allows remote attackers to access shares, and read, create, and modify arbitrary files, via unspecified vectors.
References
osvdb.org/55519
secunia.com/advisories/35672
secunia.com/advisories/42550
sunsolve.sun.com/search/document.do?assetkey=1-21-139991-03-1
sunsolve.sun.com/search/document.do?assetkey=1-66-262668-1
www.securityfocus.com/bid/35546
www.securitytracker.com/id?1022492
www.vupen.com/english/advisories/2009/1747
exchange.xforce.ibmcloud.com/vulnerabilities/51450
support.avaya.com/css/P8/documents/100058487
Social References
More
Related
6.9 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.019 Low
EPSS
Percentile
88.5%