Total vulnerabilities in the database
The makemask function in mountd.c in mountd in FreeBSD 7.4 through 8.2 does not properly handle a -network field specifying a CIDR block with a prefix length that is not an integer multiple of 8, which allows remote attackers to bypass intended access restrictions in opportunistic circumstances via an NFS mount request.
| Software | From | Fixed in |
|---|---|---|
| freebsd / freebsd | 7.4 | 7.4.x |
| freebsd / freebsd | 8.2 | 8.2.x |
| freebsd / freebsd | 8.0 | 8.0.x |
| freebsd / freebsd | 8.1 | 8.1.x |