Lucene search
HistoryJan 20, 2009 - 4:30 p.m.
CVE-2009-0180
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0.015
Percentile
87.2%
Certain Fedora build scripts for nfs-utils before 1.1.2-9.fc9 on Fedora 9, and before 1.1.4-6.fc10 on Fedora 10, omit TCP Wrapper support, which might allow remote attackers to bypass intended access restrictions, possibly a related issue to CVE-2008-1376.
Affected configurations
Node
nfsnfs-utilsRange≤1.1.2
ORnfsnfs-utilsMatch0.2
ORnfsnfs-utilsMatch0.2.1
ORnfsnfs-utilsMatch0.3.1
ORnfsnfs-utilsMatch0.3.3
ORnfsnfs-utilsMatch1.0
ORnfsnfs-utilsMatch1.0.1
ORnfsnfs-utilsMatch1.0.2
ORnfsnfs-utilsMatch1.0.3
ORnfsnfs-utilsMatch1.0.4
ORnfsnfs-utilsMatch1.0.6
ORnfsnfs-utilsMatch1.0.7
ORnfsnfs-utilsMatch1.0.7pre-1
ORnfsnfs-utilsMatch1.0.7pre-2
ORnfsnfs-utilsMatch1.0.8
ORnfsnfs-utilsMatch1.0.8rc-1
ORnfsnfs-utilsMatch1.0.8rc-2
ORnfsnfs-utilsMatch1.0.8rc-3
ORnfsnfs-utilsMatch1.0.8rc-4
ORnfsnfs-utilsMatch1.0.9
ORnfsnfs-utilsMatch1.0.10
ORnfsnfs-utilsMatch1.0.11
ORnfsnfs-utilsMatch1.0.12
ORnfsnfs-utilsMatch1.1.0
ORnfsnfs-utilsMatch1.1.0rc-1
ORnfsnfs-utilsMatch1.1.1
redhatfedoraMatch9
Node
nfsnfs-utilsRange≤1.1.4
ORnfsnfs-utilsMatch0.2
ORnfsnfs-utilsMatch0.2.1
ORnfsnfs-utilsMatch0.3.1
ORnfsnfs-utilsMatch0.3.3
ORnfsnfs-utilsMatch1.0
ORnfsnfs-utilsMatch1.0.1
ORnfsnfs-utilsMatch1.0.2
ORnfsnfs-utilsMatch1.0.3
ORnfsnfs-utilsMatch1.0.4
ORnfsnfs-utilsMatch1.0.6
ORnfsnfs-utilsMatch1.0.7
ORnfsnfs-utilsMatch1.0.7pre-1
ORnfsnfs-utilsMatch1.0.7pre-2
ORnfsnfs-utilsMatch1.0.8
ORnfsnfs-utilsMatch1.0.8rc-1
ORnfsnfs-utilsMatch1.0.8rc-2
ORnfsnfs-utilsMatch1.0.8rc-3
ORnfsnfs-utilsMatch1.0.8rc-4
ORnfsnfs-utilsMatch1.0.9
ORnfsnfs-utilsMatch1.0.10
ORnfsnfs-utilsMatch1.0.11
ORnfsnfs-utilsMatch1.0.12
ORnfsnfs-utilsMatch1.1.0
ORnfsnfs-utilsMatch1.1.0rc-1
ORnfsnfs-utilsMatch1.1.1
ORnfsnfs-utilsMatch1.1.2
ORnfsnfs-utilsMatch1.1.3
redhatfedoraMatch10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nfs | nfs-utils | * | cpe:2.3:a:nfs:nfs-utils:*:*:*:*:*:*:*:* |
| nfs | nfs-utils | 0.2 | cpe:2.3:a:nfs:nfs-utils:0.2:*:*:*:*:*:*:* |
| nfs | nfs-utils | 0.2.1 | cpe:2.3:a:nfs:nfs-utils:0.2.1:*:*:*:*:*:*:* |
| nfs | nfs-utils | 0.3.1 | cpe:2.3:a:nfs:nfs-utils:0.3.1:*:*:*:*:*:*:* |
| nfs | nfs-utils | 0.3.3 | cpe:2.3:a:nfs:nfs-utils:0.3.3:*:*:*:*:*:*:* |
| nfs | nfs-utils | 1.0 | cpe:2.3:a:nfs:nfs-utils:1.0:*:*:*:*:*:*:* |
| nfs | nfs-utils | 1.0.1 | cpe:2.3:a:nfs:nfs-utils:1.0.1:*:*:*:*:*:*:* |
| nfs | nfs-utils | 1.0.2 | cpe:2.3:a:nfs:nfs-utils:1.0.2:*:*:*:*:*:*:* |
| nfs | nfs-utils | 1.0.3 | cpe:2.3:a:nfs:nfs-utils:1.0.3:*:*:*:*:*:*:* |
| nfs | nfs-utils | 1.0.4 | cpe:2.3:a:nfs:nfs-utils:1.0.4:*:*:*:*:*:*:* |
References
Related
prion
prion
Design/Logic Flaw
2009-01-20 16:30:00
Design/Logic Flaw
2008-08-01 14:41:00
nessus
nessus
CentOS 4 : nfs-utils (CESA-2009:0955)
2013-06-29 00:00:00
Fedora 10 : nfs-utils-1.1.4-6.fc10 (2009-0266)
2009-01-16 00:00:00
Fedora 9 : nfs-utils-1.1.2-9.fc9 (2009-0297)
2009-01-16 00:00:00
cve
cve
CVE-2009-0180
2009-01-20 16:30:00
CVE-2008-1376
2008-08-01 14:41:00
cvelist
cvelist
CVE-2009-0180
2009-01-20 16:00:00
CVE-2008-1376
2008-08-01 14:00:00
openvas
openvas
Fedora Core 9 FEDORA-2009-0297 (nfs-utils)
2009-01-20 00:00:00
Fedora Core 10 FEDORA-2009-0266 (nfs-utils)
2009-01-20 00:00:00
Fedora Core 10 FEDORA-2009-0266 (nfs-utils)
2009-01-20 00:00:00
centos
centos
nfs security update
2009-05-21 14:45:10
nfs security update
2008-07-31 22:00:24
redhat
redhat
(RHSA-2009:0955) Moderate: nfs-utils security and bug fix update
2009-05-18 00:00:00
(RHSA-2008:0486) Moderate: nfs-utils security update
2008-07-31 00:00:00
oraclelinux
oraclelinux
nfs-utils security update
2008-07-31 00:00:00
nfs-utils security and bug fix update
2009-05-26 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:28:58
nvd
nvd
CVE-2008-1376
2008-08-01 14:41:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0.015
Percentile
87.2%
Related for NVD:CVE-2009-0180