Total vulnerabilities in the database
The good_client function in nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.
| Software | From | Fixed in |
|---|---|---|
| nfs / nfs-utils | 1.1.0 | 1.1.0.x |
| nfs / nfs-utils | 1.0.10 | 1.0.10.x |
| nfs / nfs-utils | 1.0.1 | 1.0.1.x |
| nfs / nfs-utils | 1.0.7-pre-2 | 1.0.7-pre-2.x |
| nfs / nfs-utils | 1.0.2 | 1.0.2.x |
| nfs / nfs-utils | 0.3.1 | 0.3.1.x |
| nfs / nfs-utils | 0.2.1 | 0.2.1.x |
| nfs / nfs-utils | 1.0.7-pre-1 | 1.0.7-pre-1.x |
| nfs / nfs-utils | - | 1.1.2.x |
| nfs / nfs-utils | 1.0.8 | 1.0.8.x |
| nfs / nfs-utils | 0.3.3 | 0.3.3.x |
| nfs / nfs-utils | 1.0.3 | 1.0.3.x |
| nfs / nfs-utils | 1.0.12 | 1.0.12.x |
| nfs / nfs-utils | 1.0.6 | 1.0.6.x |
| nfs / nfs-utils | 1.0.7 | 1.0.7.x |
| nfs / nfs-utils | 1.0.8-rc-1 | 1.0.8-rc-1.x |
| nfs / nfs-utils | 1.0.8-rc-3 | 1.0.8-rc-3.x |
| nfs / nfs-utils | 0.2 | 0.2.x |
| nfs / nfs-utils | 1.0 | 1.0.x |
| nfs / nfs-utils | 1.0.11 | 1.0.11.x |
| nfs / nfs-utils | 1.0.8-rc-2 | 1.0.8-rc-2.x |
| nfs / nfs-utils | 1.1.0-rc-1 | 1.1.0-rc-1.x |
| nfs / nfs-utils | 1.1.1 | 1.1.1.x |
| nfs / nfs-utils | 1.0.9 | 1.0.9.x |
| nfs / nfs-utils | 1.0.4 | 1.0.4.x |
| nfs / nfs-utils | 1.0.8-rc-4 | 1.0.8-rc-4.x |