CVE-2011-2500
published 2014-02-15CVE-2011-2500: The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which…
PriorityP339high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.54%
83.0th percentile
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nfs-utils | < nfs-utils 1:1.2.4-1 (bookworm) | nfs-utils 1:1.2.4-1 (bookworm) |
| linux-nfs | nfs-utils | <= 1.2.3 | — |
| linux-nfs | nfs-utils | — | — |
| linux-nfs | nfs-utils | — | — |
| linux-nfs | nfs-utils | — | — |
| linux-nfs | nfs-utils | >= 0 < 1:1.2.4-1 | 1:1.2.4-1 |
| linux-nfs | nfs-utils | >= 0 < 1:1.2.4-1 | 1:1.2.4-1 |
| linux-nfs | nfs-utils | >= 0 < 1:1.2.4-1 | 1:1.2.4-1 |
| linux-nfs | nfs-utils | >= 0 < 1:1.2.4-1 | 1:1.2.4-1 |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_cisco7.8HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-crxh-9828-m763: The host_reliable_addrinfo function in support/export/hostname
ghsa_unreviewed·2022-05-17
CVE-2011-2500 [HIGH] GHSA-crxh-9828-m763: The host_reliable_addrinfo function in support/export/hostname
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records.
OSV
CVE-2011-2500: The host_reliable_addrinfo function in support/export/hostname
osv·2014-02-15·CVSS 7.5
CVE-2011-2500 [HIGH] CVE-2011-2500: The host_reliable_addrinfo function in support/export/hostname
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records.
Cisco
Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras
vendor_cisco·2011-10-26·CVSS 7.8
CVE-2011-3318 [HIGH] Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras
Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras
A denial of service (DoS) vulnerability exists in the Cisco Video Surveillance IP Cameras 2421, 2500 series and 2600 series of devices. An unauthenticated, remote attacker could exploit this vulnerability by sending crafted RTSP TCP packets to an affected device. Successful exploitation prevents cameras from sending video streams, subsequently causing a reboot. The camera reboot is done automatically and does not require action from an operator.
There are no workarounds available to mitigate exploitation of this vulnerability that can be applied on the Cisco Video Surveillance IP Cameras. Mitigations that can be deployed on Cisco devices within the network are available.
This advisory is posted at https://sec.cloudap
Red Hat
nfs-utils: Improper authentication of an incoming request when an IP based authentication used
vendor_redhat·2011-06-22·CVSS 7.5
CVE-2011-2500 [HIGH] nfs-utils: Improper authentication of an incoming request when an IP based authentication used
nfs-utils: Improper authentication of an incoming request when an IP based authentication used
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records.
Statement: This issue did not affect the versions of nfs-utils as shipped with Red Hat Enterprise Linux 4 and 5. The Red Hat Security Response Team has rated this issue as having low security impact; a future update in Red Hat Enterprise Linux 6 may address this flaw.
Package: nfs-utils (Red Hat Enterprise Linux 4) - Not affected
Package: nfs-utils (Red Hat Enterprise Linux 5) - Not affected
Debian
CVE-2011-2500: nfs-utils - The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils be...
vendor_debian·2011·CVSS 7.5
CVE-2011-2500 [HIGH] CVE-2011-2500: nfs-utils - The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils be...
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records.
Scope: local
bookworm: resolved (fixed in 1:1.2.4-1)
bullseye: resolved (fixed in 1:1.2.4-1)
forky: resolved (fixed in 1:1.2.4-1)
sid: resolved (fixed in 1:1.2.4-1)
trixie: resolved (fixed in 1:1.2.4-1)
Cisco
Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras
vendor_cisco
CVE-2011-3318 Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras
CVE-2011-3318: Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras
A denial of service (DoS) vulnerability exists in the Cisco Video Surveillance IP Cameras 2421, 2500 series and 2600 series of devices. An unauthenticated, remote attacker could exploit this vulnerability by sending crafted RTSP TCP packets to an affected device. Successful exploitation prevents cameras from sending video streams, subsequently causing a reboot. The camera reboot is done automatically and does not require action from an operator. There are no
Bug IDs: CSCtj39462, CSCtj96312, CSCtl80175, CSCtj96312, CSCtj39462
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used
bugzilla·2011-06-27·CVSS 7.5
CVE-2011-2500 [HIGH] CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used
CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used
A security flaw was found in the way nfs-utils performed authentication
of an incoming request, when an IP based authentication mechanism was used
and certain file systems were exported to either to a netgroup or a wildcard
(e.g. *.my.domain), and some file systems (either the same or different to
the first set) were exported to specific hosts, IP addresses, or a subnet.
A remote attacker, able to create global DNS entries could use this flaw
to access above listed, exported file systems.
References:
[1] https://bugzilla.novell.com/show_bug.cgi?id=701702
[2] http://www.openwall.com/lists/oss-security/2011/06/27/7
(CVE Request)
Relevant upstream patch:
[3] http://marc.info/?l=linu
Bugzilla
CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used [fedora-all]
bugzilla·2011-06-27·CVSS 7.5
CVE-2011-2500 [HIGH] CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used [fedora-all]
CVE-2011-2500 nfs-utils: Improper authentication of an incoming request when an IP based authentication used [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=7
http://marc.info/?l=linux-nfs&m=130875695821953&w=2http://rhn.redhat.com/errata/RHSA-2011-1534.htmlhttp://sourceforge.net/projects/nfs/files/nfs-utils/1.2.4/http://sourceforge.net/projects/nfs/files/nfs-utils/1.2.4/Changelog-nfs-utils-1.2.4/downloadhttps://bugzilla.redhat.com/show_bug.cgi?id=716949http://marc.info/?l=linux-nfs&m=130875695821953&w=2http://rhn.redhat.com/errata/RHSA-2011-1534.htmlhttp://sourceforge.net/projects/nfs/files/nfs-utils/1.2.4/http://sourceforge.net/projects/nfs/files/nfs-utils/1.2.4/Changelog-nfs-utils-1.2.4/downloadhttps://bugzilla.redhat.com/show_bug.cgi?id=716949
2014-02-15
Published