CVE-2011-2500Nfs-utils vulnerability

CWE-2649 documents8 sources
Severity
7.5HIGHNVD
EPSS
0.6%
top 29.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Linux-nfs Nfs-utils
Timeline
PublishedFeb 15
Latest updateMay 17

Description

The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDlinux-nfs/nfs-utils1.2.3+3

🔴Vulnerability Details

3
GHSA
GHSA-crxh-9828-m763: The host_reliable_addrinfo function in support/export/hostname2022-05-17
OSV
CVE-2011-2500: The host_reliable_addrinfo function in support/export/hostname2014-02-15
CVEList
CVE-2011-2500: The host_reliable_addrinfo function in support/export/hostname2014-02-15

📋Vendor Advisories

3
Cisco
Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras2011-10-26
Red Hat
nfs-utils: Improper authentication of an incoming request when an IP based authentication used2011-06-22
Debian
CVE-2011-2500: nfs-utils - The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils be...2011

💬Community

2
Bugzilla
CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used2011-06-27
Bugzilla
CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used [fedora-all]2011-06-27
CVE-2011-2500 — Linux-nfs Nfs-utils vulnerability | cvebase