NFS writable

Risk Level: High risk vulnerability  High

Check or Attack Name: nfswrite
Platforms: NFS, Solaris: 2.5.1
Description:

An NFS export was found to be writable by anyone. An attacker could modify any files on this system.
Remedy:

Export the directory as read-only, or reconfigure to only export to trusted hosts. For more information, see your NFS documentation.

For specific patch IDs, see the appropriate CERT Advisory listed in the References.

References:

CERT Advisory CA-91.21, SunOS NFS Jumbo and fsirand Patches, http://www.cert.org/ftp/cert_advisories/CA-91:21.SunOS.NFS.Jumbo.and.fsirand

CERT Advisory CA-92.15, Multiple SunOS Vulnerabilities Patched, http://www.cert.org/ftp/cert_advisories/CA-92:15.Multiple.SunOS.vulnerabilities.patched

CERT Advisory CA-93.15, /usr/lib/sendmail, /bin/tar, and /dev/audio Vulnerabilities, http://www.cert.org/ftp/cert_advisories/CA-93:15.SunOS.and.Solaris.vulnerabilities

CERT Advisory CA-94.15, NFS Vulnerabilities, http://www.cert.org/ftp/cert_advisories/CA-94:15.NFS.Vulnerabilities
X-Force Logo
Know Your Risks