CVE-2013-3266

The nfsrvd_readdir function in sys/fs/nfsserver/nfs_nfsdport.c in the new NFS server in FreeBSD 8.0 through 9.1-RELEASE-p3 does not verify that a READDIR request is for a directory node, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code by specifying a plain file instead of a directory.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
VendorProductVersion
freebsdfreebsd
8.0
freebsdfreebsd
8.1
freebsdfreebsd
8.2
freebsdfreebsd
8.3
freebsdfreebsd
9.0
freebsdfreebsd
9.1
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
kfreebsd-8
saucy
dne
raring
dne
quantal
dne
precise
dne
oneiric
dne
lucid
ignored
hardy
dne
Common Weakness Enumeration
References
http://secunia.com/advisories/53241
http://www.debian.org/security/2013/dsa-2672
http://www.freebsd.org/security/advisories/FreeBSD-SA-13:05.nfsserver.asc
http://www.securitytracker.com/id/1028491
http://secunia.com/advisories/53241
http://www.debian.org/security/2013/dsa-2672
http://www.freebsd.org/security/advisories/FreeBSD-SA-13:05.nfsserver.asc
http://www.securitytracker.com/id/1028491