New Search

nfs-utils 1.0.9 and possibly other versions before 1.1.3 invokes the hosts_ctl function with the wrong order of arguments which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.

oval:org.mitre.oval:def:11544

The good_client function in nfs-utils 1.0.9 and possibly other versions before 1.1.3 invokes the hosts_ctl function with the wrong order of arguments which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 5
  • CentOS Linux 5
  • Oracle Linux 5
Class:
vulnerability
Reference(s):
  • CVE-2008-4552
Product(s):