The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x up to and including 9.1-RELEASE-p5 controls authorization for host/subnet export entries on the basis of group information sent by the client, which allows remote malicious users to bypass file permissions on NFS filesystems via crafted requests.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freebsd freebsd 9.0 |
||
freebsd freebsd 9.1 |
||
freebsd freebsd 8.3 |