NFS UID contents.gifindex.gif

NFS UID

This bug is found in some NFS servers. It is a vulnerability especially inherent in NFS servers that do not properly check the uid. This uid bug can be used by an intruder to masquerade as root to access files.

Risk: High

Fix: Ask your vendor for a patch to NFS.

Advisories: CA-91:21.SunOS.NFS.Jumbo.and.fsirand, CA-94:02.REVISED.SunOS.rpc.mountd.vulnerability, CA-92:15.Multiple.SunOS.vulnerabilities.patched, CA-93:15.SunOS.and.Solaris.vulnerabilities, CA-94:02.REVISED.SunOS.rpc.mountd.vulnerability, CA-94:15.NFS.Vulnerabilities

SunOS Patch ID: 100173-12 at Sun Patches