How to Buy
This script is Copyright (C) 2003-2017 Renaud Deraison (modified 2004 Michael Stone)
Nessus was able to access sensitive information from remote NFS shares
without having root privileges.
Nessus was either able to mount some of the NFS shares exported by the
remote server or disclose potentially sensitive information such as a
directory listing. An attacker may exploit this issue to gain read and
possibly write access to files on remote host.
Note that root privileges were not required to mount the remote
shares since the source port to mount the shares was higher than 1024.
Configure NFS on the remote host so that only authorized hosts can
mount the remote shares. The remote NFS server should prevent mount
requests originating from a non-privileged port.
Risk factor :
High / CVSS Base Score : 7.5
Nessus Plugin ID: 15984 ()
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.