MiracleLinux 3 : quota-3.13-8.AXS3 (AXSA:2013-12:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2013-12:01 advisory. The quota package contains system administration tools for monitoring and limiting user and or group disk usage per filesystem. Security issues fixed with this...

nfs-utils软件包hosts_ctl()函数绕过安全限制漏洞

BUGTRAQ ID: 31823 CVECAN ID: CVE-2008-4552 nfs-utils软件包可提供内核NFS服务器和相关工具的守护程序。 nfs-utils软件包的TCP封装程序实现用错误的参数序列调用了hostsctl函数，远程攻击者可以绕过对NFS netgroup所实施的访问控制规则，获得对受限服务的访问。 sourceforge nfs-utils 1.0.9 sourceforge ----------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://freshmeat.net/projects/nfs-utils/...

CVE-2008-4552

The goodclient function in nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hostsctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions...

CVE-2008-4552

The goodclient function in nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hostsctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions...