Уязвимость CVE-2005-3623: Информация
Описание
nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR privilege before setting access controls (ACL) on files on exported NFS filesystems, which allows remote attackers to bypass ACLs for readonly mounted NFS filesystems.
Важность: MEDIUM (5,0)
Ссылки на рекомендации, решения и инструменты
Ссылка | Ресурс |
---|---|
http://lkml.org/lkml/2005/12/23/171 |
|
SUSE-SA:2006:006 |
|
18788 |
|
SUSE-SA:2006:012 |
|
19038 |
|
16570 |
|
RHSA-2006:0575 |
|
21465 |
|
http://support.avaya.com/elmodocs2/security/ASA-2006-200.htm |
|
22417 |
|
oval:org.mitre.oval:def:11707 |
|