Microsoft Windows Network File System 安全漏洞

Microsoft Windows Network File System is a file sharing solution from Microsoft that lets you transfer files between computers running Windows Server and UNIX operating systems using the NFS protocol. A security vulnerability exists in Microsoft Windows Network File System. The following products...

PT-2023-2297 · Microsoft · Windows Ntfs +1

Name of the Vulnerable Software and Affected Versions: Windows Network File System NFS affected versions not specified Description: The issue is related to insufficient protection of service data in the Network File System NFS of Windows operating systems. It allows a remote attacker to gain...

The vulnerability of the Linux operating system’s NFS (Network File System) kernel allows a hacker to gain access to protected information or cause service failures.

The vulnerability of the Linux operating system’s Network File System kernel relates to the reutilization of previously released memory. Exploiting this vulnerability can allow an attacker to gain access to protected information or cause service failures...

CVE-2023-1652

A use-after-free flaw was found in nfsd4sscsetupdul in fs/nfsd/nfs4proc.c in the NFS filesystem in the Linux Kernel. This issue could allow a local attacker to crash the system or it may lead to a kernel information leak problem...

SUSE CVE-2023-1652

A use-after-free flaw was found in nfsd4sscsetupdul in fs/nfsd/nfs4proc.c in the NFS filesystem in the Linux Kernel. This issue could allow a local attacker to crash the system or it may lead to a kernel information leak problem...

kernel: use-after-free in __nfs42_ssc_open() in fs/nfs/nfs4file.c leading to remote Denial of Service attack

A use-after-free vulnerability was found in nfs42sscopen in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial of service...

Medium: kernel

Issue Overview: A flaw was found in the Linux kernel's Layer 2 Tunneling Protocol L2TP. A missing lock when clearing skuserdata can lead to a race condition and NULL pointer dereference. A local user could use this flaw to potentially crash the system causing a denial of service. CVE-2022-4129 A...

Exploit for CVE-2022-30136

CVE-2022-30136 Windows Network File System Remote exploit PoC...

kernel: use-after-free in __nfs42_ssc_open() in fs/nfs/nfs4file.c leading to remote Denial of Service attack

A use-after-free vulnerability was found in nfs42sscopen in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial of service...

Vulnerability of the network file system (NFS) of PowerScale OneFS operating systems, which allows a intruder to gain unauthorized access to protected information or execute arbitrary code

The vulnerability of the network file system NFS in PowerScale OneFS is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information or execute arbitrary code...

kernel: use-after-free in __nfs42_ssc_open() in fs/nfs/nfs4file.c leading to remote Denial of Service attack

A use-after-free vulnerability was found in nfs42sscopen in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial of service...

nfs-utils bug fix and enhancement update

An update is available for nfs-utils. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The nfs-utils packages provide a daemon for the kernel Network File System...

kernel: NFSD: Protect against send buffer overflow in NFSv3 READDIR

A buffer management flaw was found in the Linux kernel's NFS server implementation in the NFSv3 READDIR operation handling. A remote client can trigger this issue by crafting an RPC call with an oversized RPC record header, which forces the server to shrink its response buffer allocation. This...

kernel: nfsd buffer overflow by RPC message over TCP with garbage data

A buffer overflow flaw was found in the Linux kernel nfsd network file system subsystem. The way a user sends RPC over TCP with excess data added at the end of the message could allow a remote user to starve the resources, causing a denial of service...

kernel: NFSD: Protect against send buffer overflow in NFSv2 READDIR

In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READDIR Restore the previous limit on the @count argument to prevent a buffer overflow attack...

SUSE CVE-2004-0497

Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4...

SUSE CVE-2004-0946

rquotad in nfs-utils rquotaserver.c before 1.0.6-r6 on 64-bit architectures does not properly perform an integer conversion, which leads to a stack-based buffer overflow and allows remote attackers to execute arbitrary code via a crafted NFS request...

SUSE CVE-2005-3623

nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAYSATTR privilege before setting access controls ACL on files on exported NFS filesystems, which allows remote attackers to bypass ACLs for readonly mounted NFS filesystems...

SUSE CVE-2005-4798

Buffer overflow in NFS readlink handling in the Linux Kernel 2.4 up to 2.4.31 allows remote NFS servers to cause a denial of service crash via a long symlink, which is not properly handled in 1 nfs2xdr.c or 2 nfs3xdr.c and causes a crash in the NFS client...

SUSE CVE-2006-3468

Linux kernel 2.6.x, when using both NFS and EXT3, allows remote attackers to cause a denial of service file system panic via a crafted UDP packet with a V2 lookup procedure that specifies a bad file handle inode number, which triggers an error and causes an exported directory to be remounted...