Lucene search

K
cvelistMitreCVELIST:CVE-2009-1630
HistoryMay 14, 2009 - 5:00 p.m.

CVE-2009-1630

2009-05-1417:00:00
mitre
www.cve.org
1

AI Score

4.8

Confidence

High

EPSS

0.001

Percentile

21.4%

The nfs_permission function in fs/nfs/dir.c in the NFS client implementation in the Linux kernel 2.6.29.3 and earlier, when atomic_open is available, does not check execute (aka EXEC or MAY_EXEC) permission bits, which allows local users to bypass permissions and execute files, as demonstrated by files on an NFSv4 fileserver.

References