Back to search
CVE-2010-2020
Published: May 28, 2010
Modified: Aug 7, 2024
PUBLISHED
Description
sys/nfsclient/nfs_vfsops.c in the NFS client in the kernel in FreeBSD 7.2 through 8.1-PRERELEASE, when vfs.usermount is enabled, does not validate the length of a certain fhsize parameter, which allows local users to gain privileges via a crafted mount request.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
FreeBSD-SA-10:06
vendor-advisory
x_refsource_FREEBSD
14003
exploit
x_refsource_EXPLOIT-DB
14002
exploit
x_refsource_EXPLOIT-DB
1024039
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now