CVE-2008-4552 in nfs-utilsinfo

Summary

The good_client function in nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

10/14/2008

Disclosure

10/14/2008

Moderation

VulDB entry created

Entries

1: VDB-44477

CPE

ready

CWE

CWE-264 (Confirmed)

CVSS

7.3

EPSS

0.01355

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2008-4552
NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-4552
CVE Details	https://www.cvedetails.com/cve/CVE-2008-4552/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!