11 matches found
Linux Distros Unpatched Vulnerability : CVE-2013-1923
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rpc-gssd in nfs-utils before 1.2.8 performs reverse DNS resolution for server names during GSSAPI authentication, which might allow remote attackers to read...
RHEL 6 : nfs-utils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - nfs-utils: rpc.gssd is vulnerable to DNS spoofing CVE-2013-1923 Note that Nessus has not tested for this issue but...
Mageia: Security Advisory (MGASA-2013-0178)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2013:0821-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2013:1668-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Gentoo Security Advisory GLSA 201412-02
Gentoo Linux Local Security Checks GLSA 201412-02 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...
SUSE SLES10 Security Update : nfs-utils (SUSE-SU-2013:1668-1)
nfs-utils receives hereby a LTSS roll-up security and bugfix update. - CVE-2013-1923: Allow DNS lookups to be avoided when determining kerberos identity of server. The NFSGSSDAVOIDDNS sysconfig variable must to be set for this to take full effect as some installations could be negatively affected...
SUSE SLED10 / SLES10 Security Update : nfs-utils (SUSE-SU-2013:0822-1)
This update fixes a DNS spoofing problem with NFS rpc-gssd. CVE-2013-1923bnc813464 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without...
CVE-2013-1923
CVE-2013-1923 concerns rpc-gssd in nfs-utils before 1.2.8, which performs reverse DNS resolution during GSSAPI authentication. This DNS spoofing could let an attacker read files that should be restricted by spoofing server names. The vulnerability is tied to the nfs-utils RPC GSSD component and i...
SuSE 10 Security Update : nfs-utils (ZYPP Patch Number 8569)
This update fixes a DNS spoofing problem with NFS rpc-gssd. CVE-2013-1923bnc813464 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid66553; scriptversion"1.6";...
SuSE 11.2 Security Update : nfs-client (SAT Patch Number 7717)
This update fixes a DNS spoofing problem with NFS rpc-gssd. CVE-2013-1923bnc813464 It also adds MOUNTDOPTIONS and GSSDOPTIONS to /etc/sysconfig/nfs. bnc818094, bnc816897 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...