Lucene search
SuseSUSE-SA:2006:005HistoryJan 26, 2006 - 3:26 p.m.
remote code execution in nfs-server
2006-01-2615:26:15
lists.opensuse.org
8
0.0004 Low
EPSS
Percentile
9.8%
An remotely exploitable problem exists in the rpc.mountd service in the user space NFS server package “nfs-server”.
Solution
If you are still using the old user space nfs-server package, consider switching to the kernel level nfs-utils package which is not affected by this problem. If you are not using NFS serving at all, deinstall the RPM. Otherwise install the updated packages.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 9.2 | x86_64 | nfs-server | < 2.2beta51-208.2 | nfs-server-2.2beta51-208.2.x86_64.rpm |
| openSUSE | 9.1 | i586 | nfs-server | < 2.2beta51-206.4 | nfs-server-2.2beta51-206.4.i586.rpm |
| openSUSE | 9.3 | x86_64 | nfs-server | < 2.2beta51-209.2 | nfs-server-2.2beta51-209.2.x86_64.rpm |
| openSUSE | 10.0 | ppc | nfs-server | < 2.2beta51-212.2 | nfs-server-2.2beta51-212.2.ppc.rpm |
| openSUSE | 10.0 | i586 | nfs-server | < 2.2beta51-212.2 | nfs-server-2.2beta51-212.2.i586.rpm |
| openSUSE | 10.0 | x86_64 | nfs-server | < 2.2beta51-212.2 | nfs-server-2.2beta51-212.2.x86_64.rpm |
| openSUSE | 9.2 | i586 | nfs-server | < 2.2beta51-208.2 | nfs-server-2.2beta51-208.2.i586.rpm |
| openSUSE | 9.3 | i586 | nfs-server | < 2.2beta51-209.2 | nfs-server-2.2beta51-209.2.i586.rpm |
| openSUSE | 9.1 | x86_64 | nfs-server | < 2.2beta51-206.4 | nfs-server-2.2beta51-206.4.x86_64.rpm |
Related
openvas
openvas
Debian: Security Advisory (DSA-975-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 975-1 (nfs-user-server)
2008-01-17 00:00:00
prion
prion
Buffer overflow
2006-01-31 02:03:00
cve
cve
CVE-2006-0043
2006-01-31 02:03:00
nessus
nessus
Debian DSA-975-1 : nfs-user-server - buffer overflow
2006-10-14 00:00:00
SUSE-SA:2006:005: nfs-server
2006-01-29 00:00:00
debian
debian
ubuntucve
ubuntucve
CVE-2006-0043
2006-01-31 00:00:00
redhatcve
redhatcve
CVE-2006-0043
2015-10-30 09:23:10
nvd
nvd
CVE-2006-0043
2006-01-31 02:03:00
securityvulns
securityvulns
cvelist
cvelist
CVE-2006-0043
2006-01-31 02:00:00