CVE-2004-0154 — Nfs-utils vulnerability

7 documents7 sources

Severity

5.0MEDIUMNVD

EPSS

1.0%

top 22.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

NFS Nfs-utils

Timeline

PublishedJun 14

Latest updateApr 29

Description

rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a denial of service (crash) via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDnfs/nfs-utils5 versions+4

Patches

Patch: www.redhat.com ↗Patch: www.securityfocus.com ↗Patch: www.trustix.org ↗

🔴Vulnerability Details

GHSA

GHSA-94fh-jw32-7fj9: rpc↗2022-04-29

▶

OSV

CVE-2004-0154: rpc↗2004-06-14

▶

CVEList

CVE-2004-0154: rpc↗2004-05-12

▶

📋Vendor Advisories

Debian

CVE-2004-0154: nfs-utils - rpc.mountd in nfs-utils after 1.0.3 and before 1.0.6 allows attackers to cause a...↗2004

▶

Red Hat

security flaw↗2003-09-09

▶

💬Community

Bugzilla

CVE-2004-0154 security flaw↗2018-08-16

▶