PROTOCOL-RPC Linux Kernel nfsd v2 udp CAP_MKNOD security bypass attempt
nfsd in the Linux kernel before 2.6.28.9 does not drop the CAPMKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the rootsquash option.
CVSS base score 4.9 CVSS impact score 6.9 CVSS exploitability score 3.9 confidentialityImpact NONE integrityImpact COMPLETE availabilityImpact COMPLETE
CVE-2009-1072:
CVSS base score 4.9
CVSS impact score 6.9
CVSS exploitability score 3.9
Confidentiality Impact NONE
Integrity Impact COMPLETE
Availability Impact NONE
CVE-2009-1072: nfsd in the Linux kernel before 2.6.28.9 does not drop the CAPMKNOD capability before handling a user request in a thread, which allows local users to create device nodes, as demonstrated on a filesystem that has been exported with the rootsquash option.
CVE-2009-1072:
Access Vector LOCAL
Access Complexity LOW
Authentication NONE
None known
None known
Upgrade to the latest non-affected version of the software.
Apply the appropriate vendor supplied patches.