Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2007-4135
HistorySep 05, 2007 - 1:17 a.m.

CVE-2007-4135

2007-09-0501:17:00
Debian Security Bug Tracker
security-tracker.debian.org
12

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

30.4%

JSON

The NFSv4 ID mapper (nfsidmap) before 0.17 does not properly handle return values from the getpwnam_r function when performing a username lookup, which can cause it to report a file as being owned by “root” instead of “nobody” if the file exists on the server but not on the client.

OSVersionArchitecturePackageVersionFilename
Debian11alllibnfsidmap< 0.18-0libnfsidmap_0.18-0_all.deb

Related

cvelist 1
ubuntucve 1
openvas 2
securityvulns 2
nvd 1
cve 1
prion 1
nessus 5
oraclelinux 1
centos 1
redhat 1
cvelist
cvelist
CVE-2007-4135
2007-09-05 01:00:00
ubuntucve
ubuntucve
CVE-2007-4135
2007-09-05 00:00:00
openvas
openvas
Mandriva Update for libnfsidmap MDKSA-2007:240 (libnfsidmap)
2009-04-09 00:00:00
Mandriva Update for libnfsidmap MDKSA-2007:240 (libnfsidmap)
2009-04-09 00:00:00
securityvulns
securityvulns
libnfsidmap / NFS privilege escalation
2007-12-12 00:00:00
[ MDKSA-2007:240 ] - Updated libnfsidmap packages fix username lookup flaw
2007-12-12 00:00:00
nvd
nvd
CVE-2007-4135
2007-09-05 01:17:00
cve
cve
CVE-2007-4135
2007-09-05 01:17:00
prion
prion
Code injection
2007-09-05 01:17:00
nessus
nessus
Mandrake Linux Security Advisory : libnfsidmap (MDKSA-2007:240)
2007-12-11 00:00:00
RHEL 5 : nfs-utils-lib (RHSA-2007:0951)
2007-10-03 00:00:00
CentOS 5 : nfs-utils-lib (CESA-2007:0951)
2010-01-06 00:00:00
oraclelinux
oraclelinux
Important: nfs-utils-lib security update
2007-10-02 00:00:00
centos
centos
nfs security update
2007-10-03 06:03:16
redhat
redhat
(RHSA-2007:0951) Important: nfs-utils-lib security update
2007-10-02 00:00:00

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

EPSS

0.001

Percentile

30.4%

JSON
Related for DEBIANCVE:CVE-2007-4135
cvelist1ubuntucve1openvas2securityvulns2nvd1cve1prion1nessus5oraclelinux1centos1redhat1