New Search

VMware nfs-utils vulnerability

oval:org.mitre.oval:def:8325

The good_client function in nfs-utils 1.0.9 and possibly other versions before 1.1.3 invokes the hosts_ctl function with the wrong order of arguments which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • VMWare ESX Server 4.0
Class:
vulnerability
Reference(s):
  • CVE-2008-4552
Product(s):