Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nfs-utils vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2019-3689
The nfs-utils package in SUSE Linux Enterprise Server 12 before and including version 1.3.0-34.18.1 and in SUSE Linux Enterprise Server 15 before and including version 2.1.1-6.10.2 the directory /var/lib/nfs is owned by statd:nogroup. This directory contains files owned and manag...
Linux-nfs Nfs-utils
10
CVSSv2
CVE-2004-0946
rquotad in nfs-utils (rquota_server.c) prior to 1.0.6-r6 on 64-bit architectures does not properly perform an integer conversion, which leads to a stack-based buffer overflow and allows remote malicious users to execute arbitrary code via a crafted NFS request.
Nfs Nfs-utils 1.0.1
Nfs Nfs-utils 1.0.2
Nfs Nfs-utils 1.0.3
Nfs Nfs-utils 1.0.6
Nfs Nfs-utils 1.0
Nfs Nfs-utils 1.0.4
Redhat Enterprise Linux Desktop 3.0
Redhat Enterprise Linux 3.0
10
CVSSv2
CVE-2003-0252
Off-by-one error in the xlog function of mountd in the Linux NFS utils package (nfs-utils) prior to 1.0.4 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via certain RPC requests to mountd that do not contain newlines.
Linux-nfs Nfs-utils
10
CVSSv2
CVE-2000-0666
rpc.statd in the nfs-utils package in various Linux distributions does not properly cleanse untrusted format strings, which allows remote malicious users to gain root privileges.
Conectiva Linux 4.2
Conectiva Linux 4.1
Conectiva Linux 5.1
Conectiva Linux 4.0es
Conectiva Linux 5.0
Conectiva Linux 4.0
Suse Suse Linux 6.3
Debian Debian Linux 2.3
Debian Debian Linux 2.2
Trustix Secure Linux 1.1
Redhat Linux 6.1
Redhat Linux 6.2
Redhat Linux 6.0
Trustix Secure Linux 1.0
Suse Suse Linux 6.4
Suse Suse Linux 7.0
3 EDB exploits
7.5
CVSSv2
CVE-2011-2500
The host_reliable_addrinfo function in support/export/hostname.c in nfs-utils prior to 1.2.4 does not properly use DNS to verify access to NFS exports, which allows remote malicious users to mount filesystems by establishing crafted DNS A and PTR records.
Linux-nfs Nfs-utils
Linux-nfs Nfs-utils 1.2.2
Linux-nfs Nfs-utils 1.2.1
Linux-nfs Nfs-utils 1.2.0
7.5
CVSSv2
CVE-2009-0180
Certain Fedora build scripts for nfs-utils prior to 1.1.2-9.fc9 on Fedora 9, and prior to 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote malicious users to bypass intended access restrictions, possibly a related issue to CVE-2008-1376.
Nfs Nfs-utils
Nfs Nfs-utils 0.2
Nfs Nfs-utils 0.2.1
Nfs Nfs-utils 0.3.1
Nfs Nfs-utils 0.3.3
Nfs Nfs-utils 1.0
Nfs Nfs-utils 1.0.1
Nfs Nfs-utils 1.0.2
Nfs Nfs-utils 1.0.3
Nfs Nfs-utils 1.0.4
Nfs Nfs-utils 1.0.6
Nfs Nfs-utils 1.0.7
Nfs Nfs-utils 1.0.8
Nfs Nfs-utils 1.0.9
Nfs Nfs-utils 1.0.10
Nfs Nfs-utils 1.0.11
Nfs Nfs-utils 1.0.12
Nfs Nfs-utils 1.1.0
Nfs Nfs-utils 1.1.1
Nfs Nfs-utils 1.1.2
Nfs Nfs-utils 1.1.3
7.5
CVSSv2
CVE-2008-4552
The good_client function in nfs-utils 1.0.9, and possibly other versions prior to 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote malicious users to bypass intended access restrictions.
Nfs Nfs-utils 1.1.0
Nfs Nfs-utils 1.0.10
Nfs Nfs-utils 1.0.1
Nfs Nfs-utils 1.0.7
Nfs Nfs-utils 1.0.2
Nfs Nfs-utils 0.3.1
Nfs Nfs-utils 0.2.1
Nfs Nfs-utils
Nfs Nfs-utils 1.0.8
Nfs Nfs-utils 0.3.3
Nfs Nfs-utils 1.0.3
Nfs Nfs-utils 1.0.12
Nfs Nfs-utils 1.0.6
Nfs Nfs-utils 0.2
Nfs Nfs-utils 1.0
Nfs Nfs-utils 1.0.11
Nfs Nfs-utils 1.1.1
Nfs Nfs-utils 1.0.9
Nfs Nfs-utils 1.0.4
7.5
CVSSv2
CVE-2008-1376
A certain Red Hat build script for nfs-utils prior to 1.0.9-35z.el5_2 on Red Hat Enterprise Linux (RHEL) 5 omits TCP wrappers support, which might allow remote malicious users to bypass intended access restrictions.
Redhat Nfs Utils 1.0.9
5
CVSSv2
CVE-2004-1014
statd in nfs-utils 1.257 and previous versions does not ignore the SIGPIPE signal, which allows remote malicious users to cause a denial of service (server process crash) via a TCP connection that is prematurely terminated.
Nfs Nfs-utils 1.0.6
Mandrakesoft Mandrake Linux Corporate Server 2.1
Redhat Enterprise Linux Desktop 3.0
Debian Debian Linux 3.0
Redhat Enterprise Linux 3.0
Mandrakesoft Mandrake Linux 9.2
Mandrakesoft Mandrake Linux 10.1
Mandrakesoft Mandrake Linux 10.0
5
CVSSv2
CVE-2004-0154
rpc.mountd in nfs-utils after 1.0.3 and prior to 1.0.6 allows malicious users to cause a denial of service (crash) via an NFS mount of a directory from a client whose reverse DNS lookup name is different from the forward lookup name.
Nfs Nfs-utils 1.0.1
Nfs Nfs-utils 1.0.3
Nfs Nfs-utils 1.0.6
Nfs Nfs-utils 1.0
Nfs Nfs-utils 1.0.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »