| VID |
17051 |
| Severity |
40 |
| Port |
111 |
| Protocol |
TCP,UDP |
| Class |
RPC |
| Detailed Description |
This system was found to support mounting of NFS file systems. The security of NFS relies heavily upon who is allowed to mount the volumes that a server exports, and whether or not they are exported read-only. Improperly configured access permissions on exported volumes can permit an attacker to gain access to critical files.
and also Unpatched versions may allow to gain a root shell remotely by a buffer overflow. |
| Recommendation |
Disable the 'mountd' rpc service if it's not needed, or use it after asking to the vendor whether not to be vulnerable.
Solaris 10, Solaris 11, Enterprise Linux 6.4, CentOS 6.4, Fedora 19:
1. you become a root, and then stop the service like the following:
# rpcinfo -d [program num] [version num]
2. comment its entry by putting a # at the beginning of the line with 'mountd' in /etc/rpc
3. # pkill -HUP (x)inetd |
| Related URL |
CVE-1999-0002 (CVE) |
| Related URL |
121 (SecurityFocus) |
| Related URL |
1411 (ISS) |
|
