Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2011-2500

The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils before 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote attackers to mount filesystems by establishing crafted DNS A and PTR records.

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugzilla.redha...
MISC: http://rhn.redhat.com/...
MISC: http://marc.info/?l=li...
MISC: http://sourceforge.net...
MISC: http://sourceforge.net...

Launchpad.net

CVE 2011-2500

Related bugs

References