83 matches found
FreeBSD : FreeBSD -- Network ACL mishandling in mountd(8) (87261557-a450-11e2-9898-001060e06fd4)
While parsing the exports5 table, a network mask in the form of '-network=netname/prefixlength' results in an incorrect network mask being computed if the prefix length is not a multiple of 8. For example, specifying the ACL for an export as '-network 192.0.2.0/23' would result in a netmask of...
Slackware: Security Advisory (SSA:2003-195-01b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Solaris 10 (x86) : 149192-01 (deprecated)
SunOS 5.10x86: mountd patch. Date this patch was last updated by Sun : Jun/08/12 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/11/28. C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
Solaris 10 (sparc) : 149191-01 (deprecated)
SunOS 5.10: mountd patch. Date this patch was last updated by Sun : Jun/08/12 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/11/29. C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
nfs-utils security, bug fix, and enhancement update
1.2.3-15 - mout.nfs: Don't roll back to IPv4 whe IPv6 fails bz 744657 - rpcdebug: Added pNFS and FSCache debugging bz 747400 1.2.3-14 - mount.nfs: Backported how upstream handles the SIGXFSZ signal bz 697981 1.2.3-13 - mount.nfs: Reworked the code that deals with RLIMITFSIZE bz 697981 1.2.3-12 -...
Nmap NSE net: nfs-ls
Attempts to get useful information about files from NFS exports. The output is intended to resemble the output of 'ls'. The script starts by enumerating and mounting the remote NFS exports. After that it performs an NFS GETATTR procedure call for each mounted point in order to get its ACLs. For...
Nmap NSE net: nfs-statfs
Retrieves disk space statistics and information from a remote NFS share. The output is intended to resemble the output of 'df'. The script will provide pathconf information of the remote NFS if the version used is NFSv3. SYNTAX: nfs-statfs.human: If set to '1' or 'true', shows file sizes in a hum...
Nmap NSE net: rpcinfo
Connects to portmapper and fetches a list of all registered programs. SYNTAX: nfs.version: number If set overrides the detected version of nfs mount.version: number If set overrides the detected version of mountd rpc.protocol: table If set overrides the preferred order in which protocols are...
FreeBSD Security Advisory (FreeBSD-SA-11:01.mountd.asc)
The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-11:01.mountd.asc ADV FreeBSD-SA-11:01.mountd.asc OpenVAS Vulnerability Test $ Description: Auto generated from ADV FreeBSD-SA-11:01.mountd.asc Authors: Thomas Reinke Copyright: Copyright c 2011...
CVE-2011-1739
The makemask function in mountd.c in mountd in FreeBSD 7.4 through 8.2 does not properly handle a -network field specifying a CIDR block with a prefix length that is not an integer multiple of 8, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances v...
CVE-2011-1739
The makemask function in mountd.c in mountd in FreeBSD 7.4 through 8.2 does not properly handle a -network field specifying a CIDR block with a prefix length that is not an integer multiple of 8, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances v...
CVE-2011-1739
CVE-2011-1739 affects FreeBSD mountd (7.4–8.2). The -network CIDR prefix not multiple of 8 yields an incorrect netmask during exports(5) parsing, causing access to wrong clients via NFS mount requests. The advisory provides fixes: upgrade to vulnerable-free versions after the correction (7-STABLE...
FreeBSD Security Advisory FreeBSD-SA-11:01.mountd
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-11:01.mountd Security Advisory The FreeBSD Project Topic: Network ACL mishandling in mountd8 Category: core Module: mountd Announced: 2011-04-20 Credits: Ruslan...
FreeBSD mountd protection bypass
Network mask in ACLs is computed incorrectly...
FreeBSD-SA-11:01.mountd
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-11:01.mountd Security Advisory The FreeBSD Project Topic: Network ACL mishandling in mountd8 Category: core Module: mountd Announced: 2011-04-20 Credits: Ruslan...
FreeBSD -- Network ACL mishandling in mountd(8)
Problem Description: While parsing the exports5 table, a network mask in the form of "-network=netname/prefixlength" results in an incorrect network mask being computed if the prefix length is not a multiple of 8. For example, specifying the ACL for an export as "-network 192.0.2.0/23" would resu...
Solaris 10 (x86) : 124445-01
SunOS 5.10x86: mountd patch. Date this patch was last updated by Sun : Nov/03/06 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2013/02/18. C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
Solaris 10 (sparc) : 124444-01
SunOS 5.10: mountd patch. Date this patch was last updated by Sun : Nov/03/06 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2013/04/30. C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
nfs-utils security and bug fix update
1.0.9-42 - mountd: Check host alias with netgroups bz 478952 - exportfs: fixed typo in man page bz 474848 - nfs.init: NFS server reboot results in 'Stale NFS file handle' bz 474449 - nfslock.init: options not correctly parsed bz 459591 - mount.nfs: mounts fail with read-only /etc bz 450646 -...
Sun Solaris RPC服务库librpcsvc(3LIB)拒绝服务漏洞
BUGTRAQ ID: 26071 Solaris是一款由Sun开发和维护的商业性质UNIX操作系统。 如果用户调用了automountd1M服务去访问导出了大量文件系统的远程NFS服务器的话,Solaris RPC服务库(librpcsvc3LIB)中的安全漏洞可能允许本地非特权用户在系统上导致automountd1M守护程序崩溃。如果这个漏洞被利用,则用户可能看到访问autofs4加载点的进程变得没有响应并挂起。在Solaris 8、Solaris 9和Solaris 10系统上,控制台会打印且syslogd1M守护程序会记录类似于以下的消息: Sep 7 08:50:20...