- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Synopsis
========
A remote attacker can bypass the tcp-wrappers client authorization in
net-snmp.
Background
==========
_______________________________________________________________________
Problem Description:
A security vulnerability has been identified and fixed in nfs-utils,
which caused TCP Wrappers to ignore netgroups and allows remote
attackers to bypass intended access restrictions (CVE-2008-4552).
The updated packages have been patched to prevent this.
Update:
the necessary changes.
Details follow:
It was discovered that nfs-utils did not properly enforce netgroup
restrictions when using TCP Wrappers. Remote attackers could bypass the
netgroup restrictions enabled by the administrator and possibly gain
access to sensitive information.
Updated packages for Ubuntu 6.06 LTS:
Problem Description:
A vulnerability has been identified and corrected in net-snmp:
The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in
net-snmp 5.0.9 through 5.4.2, when using TCP wrappers for client
authorization, does not properly parse hosts.allow rules, which
allows remote attackers to bypass intended access restrictions
and execute SNMP queries, related to source/destination IP address
confusion. (CVE-2008-6123)
Description
===========
Michele Marcionelli reported that nfs-utils invokes the hosts_ctl()
function with the wrong order of arguments, which causes TCP Wrappers
to ignore netgroups.
Impact
======
In general, a standard system update will make all the necessary changes.
Details follow:
The SNMP server did not correctly validate certain UDP clients when using
TCP wrappers. Under some situations, a remote attacker could bypass
access restrictions and communicate with the SNMP server, potentially
leading to a loss of privacy or a denial of service.
Updated packages for Ubuntu 10.04:
Problem Description:
A vulnerability has been identified and corrected in net-snmp:
The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in
net-snmp 5.0.9 through 5.4.2, when using TCP wrappers for client
authorization, does not properly parse hosts.allow rules, which
allows remote attackers to bypass intended access restrictions
and execute SNMP queries, related to source/destination IP address
confusion. (CVE-2008-6123)
===========================================================
Ubuntu Security Notice USN-507-1 August 30, 2007
tcp-wrappers vulnerability
https://launchpad.net/bugs/135332
===========================================================
A security issue affects the following Ubuntu releases:
Ubuntu 7.04
1.0.9-42.el5
The nfs-utils package provides a daemon for the kernel NFS server
and related tools.
It was discovered that nfs-utils did not use tcp_wrappers
correctly. Certain hosts access rules defined in "/etc/hosts.allow"
and "/etc/hosts.deny" may not have been honored, possibly allowing
remote attackers to bypass intended access restrictions.
The Common Vulnerabilities and Exposures Project (cve.mitre.org)
