FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

FreeBSD -- Incorrect privilege validation in the NFS server

Affected packages
9.1 <= FreeBSD-kernel < 9.1_5
8.3 <= FreeBSD-kernel < 8.3_9

Details

VuXML ID e5d2442d-5e76-11e6-a6c3-14dae9d210b8
Discovery 2013-07-06
Entry 2016-08-09

Problem Description:

The kernel incorrectly uses client supplied credentials instead of the one configured in exports(5) when filling out the anonymous credential for a NFS export, when -network or -host restrictions are used at the same time.

Impact:

The remote client may supply privileged credentials (e.g. the root user) when accessing a file under the NFS share, which will bypass the normal access checks.

References

CVE Name CVE-2013-4851
FreeBSD Advisory SA-13:08.nfsserver