Vulnerability Description
The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entries on the basis of group information sent by the client, which allows remote attackers to bypass file permissions on NFS filesystems via crafted requests.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | 8.3 |
Related Weaknesses (CWE)
References
- http://svnweb.freebsd.org/base?view=revision&revision=244226
- http://www.freebsd.org/security/advisories/FreeBSD-SA-13:08.nfsserver.asc
- http://www.securityfocus.com/bid/61484
- http://svnweb.freebsd.org/base?view=revision&revision=244226
- http://www.freebsd.org/security/advisories/FreeBSD-SA-13:08.nfsserver.asc
- http://www.securityfocus.com/bid/61484
FAQ
What is CVE-2013-4851?
CVE-2013-4851 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The vfs_hang_addrlist function in sys/kern/vfs_export.c in the NFS server implementation in the kernel in FreeBSD 8.3 and 9.x through 9.1-RELEASE-p5 controls authorization for host/subnet export entri...
How severe is CVE-2013-4851?
CVE-2013-4851 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-4851?
Check the references section above for vendor advisories and patch information. Affected products include: Freebsd Freebsd.