CVE-2013-1923
21.01.2014, 18:55
rpc-gssd in nfs-utils before 1.2.8 performs reverse DNS resolution for server names during GSSAPI authentication, which might allow remote attackers to read otherwise-restricted files via DNS spoofing attacks.Enginsight
| Vendor | Product | Version |
|---|---|---|
| linux-nfs | nfs-utils | 𝑥 ≤ 1.2.7 |
| linux-nfs | nfs-utils | 1.2.0 |
| linux-nfs | nfs-utils | 1.2.1 |
| linux-nfs | nfs-utils | 1.2.2 |
| linux-nfs | nfs-utils | 1.2.3 |
| linux-nfs | nfs-utils | 1.2.4 |
| linux-nfs | nfs-utils | 1.2.5 |
| linux-nfs | nfs-utils | 1.2.6 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| nfs-utils |
|
Common Weakness Enumeration
References