Lucene search
HistoryJan 20, 2009 - 4:30 p.m.
CVE-2009-0180
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.6 Medium
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.5%
Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376.
Affected configurations
Node
nfsnfs-utilsRange≤1.1.2
ORnfsnfs-utilsMatch0.2
ORnfsnfs-utilsMatch0.2.1
ORnfsnfs-utilsMatch0.3.1
ORnfsnfs-utilsMatch0.3.3
ORnfsnfs-utilsMatch1.0
ORnfsnfs-utilsMatch1.0.1
ORnfsnfs-utilsMatch1.0.2
ORnfsnfs-utilsMatch1.0.3
ORnfsnfs-utilsMatch1.0.4
ORnfsnfs-utilsMatch1.0.6
ORnfsnfs-utilsMatch1.0.7
ORnfsnfs-utilsMatch1.0.7pre-1
ORnfsnfs-utilsMatch1.0.7pre-2
ORnfsnfs-utilsMatch1.0.8
ORnfsnfs-utilsMatch1.0.8rc-1
ORnfsnfs-utilsMatch1.0.8rc-2
ORnfsnfs-utilsMatch1.0.8rc-3
ORnfsnfs-utilsMatch1.0.8rc-4
ORnfsnfs-utilsMatch1.0.9
ORnfsnfs-utilsMatch1.0.10
ORnfsnfs-utilsMatch1.0.11
ORnfsnfs-utilsMatch1.0.12
ORnfsnfs-utilsMatch1.1.0
ORnfsnfs-utilsMatch1.1.0rc-1
ORnfsnfs-utilsMatch1.1.1
redhatfedoraMatch9
Node
nfsnfs-utilsRange≤1.1.4
ORnfsnfs-utilsMatch0.2
ORnfsnfs-utilsMatch0.2.1
ORnfsnfs-utilsMatch0.3.1
ORnfsnfs-utilsMatch0.3.3
ORnfsnfs-utilsMatch1.0
ORnfsnfs-utilsMatch1.0.1
ORnfsnfs-utilsMatch1.0.2
ORnfsnfs-utilsMatch1.0.3
ORnfsnfs-utilsMatch1.0.4
ORnfsnfs-utilsMatch1.0.6
ORnfsnfs-utilsMatch1.0.7
ORnfsnfs-utilsMatch1.0.7pre-1
ORnfsnfs-utilsMatch1.0.7pre-2
ORnfsnfs-utilsMatch1.0.8
ORnfsnfs-utilsMatch1.0.8rc-1
ORnfsnfs-utilsMatch1.0.8rc-2
ORnfsnfs-utilsMatch1.0.8rc-3
ORnfsnfs-utilsMatch1.0.8rc-4
ORnfsnfs-utilsMatch1.0.9
ORnfsnfs-utilsMatch1.0.10
ORnfsnfs-utilsMatch1.0.11
ORnfsnfs-utilsMatch1.0.12
ORnfsnfs-utilsMatch1.1.0
ORnfsnfs-utilsMatch1.1.0rc-1
ORnfsnfs-utilsMatch1.1.1
ORnfsnfs-utilsMatch1.1.2
ORnfsnfs-utilsMatch1.1.3
redhatfedoraMatch10
References
Related
cve
cve
CVE-2009-0180
2009-01-20 16:30:00
CVE-2008-1376
2008-08-01 14:41:00
cvelist
cvelist
CVE-2009-0180
2009-01-20 16:00:00
CVE-2008-1376
2008-08-01 14:00:00
prion
prion
Design/Logic Flaw
2009-01-20 16:30:00
Design/Logic Flaw
2008-08-01 14:41:00
nessus
nessus
CentOS 4 : nfs-utils (CESA-2009:0955)
2013-06-29 00:00:00
Fedora 9 : nfs-utils-1.1.2-9.fc9 (2009-0297)
2009-01-16 00:00:00
Fedora 10 : nfs-utils-1.1.4-6.fc10 (2009-0266)
2009-01-16 00:00:00
openvas
openvas
Fedora Core 9 FEDORA-2009-0297 (nfs-utils)
2009-01-20 00:00:00
Fedora Core 10 FEDORA-2009-0266 (nfs-utils)
2009-01-20 00:00:00
Fedora Core 10 FEDORA-2009-0266 (nfs-utils)
2009-01-20 00:00:00
centos
centos
nfs security update
2009-05-21 14:45:10
nfs security update
2008-07-31 22:00:24
nvd
nvd
CVE-2008-1376
2008-08-01 14:41:00
redhat
redhat
(RHSA-2008:0486) Moderate: nfs-utils security update
2008-07-31 00:00:00
(RHSA-2009:0955) Moderate: nfs-utils security and bug fix update
2009-05-18 00:00:00
oraclelinux
oraclelinux
nfs-utils security update
2008-07-31 00:00:00
nfs-utils security and bug fix update
2009-05-26 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:28:58
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.6 Medium
AI Score
Confidence
Low
0.014 Low
EPSS
Percentile
86.5%
Related for NVD:CVE-2009-0180