Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
NFS:FREEBSD-NFS-READDIRPLUS-DOS |
|---|---|
Severity |
Major |
Recommended |
Yes |
Category |
NFS |
Keywords |
FreeBSD NFS Server nfsrvd_readdirplus Denial-of-Service |
Release Date |
2019/06/20 |
Update Number |
3182 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
NFS: FreeBSD NFS Server nfsrvd_readdirplus Denial-of-Service
This signature detects attempts to exploit a known vulnerability against FreeBSD NFS Server. A successful attack can result in a denial-of-service condition.
Extended Description
In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, the NFS server lacks a bounds check in the READDIRPLUS NFS request. Unprivileged remote users with access to the NFS server can cause a resource exhaustion by forcing the server to allocate an arbitrarily large memory allocation.
Affected Products
- Freebsd freebsd -
- Freebsd freebsd 0.4_1
- Freebsd freebsd 1.0
- Freebsd freebsd 10.0
- Freebsd freebsd 10.1
- Freebsd freebsd 10.2
- Freebsd freebsd 10.3
- Freebsd freebsd 10.4
- Freebsd freebsd 1.1
- Freebsd freebsd 11.0
- Freebsd freebsd 11.1
- Freebsd freebsd 11.2
- Freebsd freebsd 1.1.5
- Freebsd freebsd 1.1.5.1
- Freebsd freebsd 1.2
- Freebsd freebsd 1.5
- Freebsd freebsd 2.0
- Freebsd freebsd 2.0.1
- Freebsd freebsd 2.0.5
- Freebsd freebsd 2.1
- Freebsd freebsd 2.1.0
- Freebsd freebsd 2.1.5
- Freebsd freebsd 2.1.6
- Freebsd freebsd 2.1.6.1
- Freebsd freebsd 2.1.7
- Freebsd freebsd 2.1.7.1
- Freebsd freebsd 2.2
- Freebsd freebsd 2.2.1
- Freebsd freebsd 2.2.2
- Freebsd freebsd 2.2.3
- Freebsd freebsd 2.2.4
- Freebsd freebsd 2.2.5
- Freebsd freebsd 2.2.6
- Freebsd freebsd 2.2.7
- Freebsd freebsd 2.2.8
- Freebsd freebsd 3.0
- Freebsd freebsd 3.1
- Freebsd freebsd 3.2
- Freebsd freebsd 3.3
- Freebsd freebsd 3.4
- Freebsd freebsd 3.5
- Freebsd freebsd 3.5.1
- Freebsd freebsd 4.0
- Freebsd freebsd 4.1
- Freebsd freebsd 4.10
- Freebsd freebsd 4.11
- Freebsd freebsd 4.1.1
- Freebsd freebsd 4.2
- Freebsd freebsd 4.3
- Freebsd freebsd 4.4
- Freebsd freebsd 4.5
- Freebsd freebsd 4.6
- Freebsd freebsd 4.6.1
- Freebsd freebsd 4.6.2
- Freebsd freebsd 4.7
- Freebsd freebsd 4.8
- Freebsd freebsd 4.9
- Freebsd freebsd 5.0
- Freebsd freebsd 5.1
- Freebsd freebsd 5.2
- Freebsd freebsd 5.2.1
- Freebsd freebsd 5.3
- Freebsd freebsd 5.4
- Freebsd freebsd 5.5
- Freebsd freebsd 6.0
- Freebsd freebsd 6.1
- Freebsd freebsd 6.2
- Freebsd freebsd 6.3
- Freebsd freebsd 6.4
- Freebsd freebsd 7.0
- Freebsd freebsd 7.1
- Freebsd freebsd 7.2
- Freebsd freebsd 7.3
- Freebsd freebsd 7.4
- Freebsd freebsd 8.0
- Freebsd freebsd 8.1
- Freebsd freebsd 8.2
- Freebsd freebsd 8.3
- Freebsd freebsd 8.4
- Freebsd freebsd 9.0
- Freebsd freebsd 9.1
- Freebsd freebsd 9.2
- Freebsd freebsd 9.3
References
- BugTraq: 106192
- CVE: CVE-2018-17159