CVE-2009-0872

by Fred · 11/03/2009

The NFS server in Sun Solaris 10, and OpenSolaris before snv_111, does not properly implement the AUTH_NONE (aka sec=none) security mode in combination with other security modes, which allows remote attackers to bypass intended access restrictions and read or modify files, as demonstrated by a combination of the AUTH_NONE and AUTH_SYS security modes.

Date published : 2009-03-11

http://www.securityfocus.com/bid/34063

http://sunsolve.sun.com/search/document.do?assetkey=1-21-139462-02-1

CVE-2009-0872

Similar

Recent Posts

Categories

CVE-2009-0872

Share this:

Similar

Recent Posts

Categories

Tags