Linux NFS utils package (nfs-utils) mountd xlog Function Off-by-one Remote Overflow

Critical Nessus Plugin ID 11800

Synopsis

The remote service is vulnerable to a buffer overflow.

Description

The remote rpc.mountd daemon is vulnerable to an off-by-one overflow which could be exploited by an attacker to gain a root shell on this host.

Solution

Upgrade to the latest version of nfs-utils

See Also

http://marc.info/?l=bugtraq&m=105820223707191&w=2

Plugin Details

Severity: Critical

ID: 11800

File Name: nfs_xlog_overflow.nasl

Version: $Revision: 1.28 $

Type: remote

Family: RPC

Published: 2003/07/23

Modified: 2017/02/16

Dependencies: 10437, 10223, 11936

Risk Information

Risk Factor: Critical

CVSSv2

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: rpc/portmap

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2003/07/14

Reference Information

CVE: CVE-2003-0252

BID: 8179

RHSA: 2003:206-01

SuSE: SUSE-SA:2003:031