Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entries on the basis of group information sent by the client, which allows remote attackers to bypass file permissions on NFS filesystems via crafted requests.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
FreeBSD NFS服务器‘vfs_hang_addrlist’函数权限许可和访问控制漏洞
Vulnerability Description
FreeBSD是由Core Team团队负责的FreeBSD项目中的一套类Unix自由操作系统,是经过BSD、386BSD和4.4BSD发展而来的类Unix的一个重要分支。 FreeBSD 8.3版本和FreeBSD 9.x至9.1-RELEASE-p5版本中的内核中的NFS服务器实现中的sys/kern/vfs_export.c文件中的‘vfs_hang_addrlist’函数中存在漏洞,该漏洞源于程序根据客户端发送的组信息对host/subnet导出项进行授权控制。远程攻击者可通过特制的请求利用该漏洞
CVSS Information
N/A
Vulnerability Type
N/A