CVE-2009-2296

Name of the Vulnerable Software and Affected Versions Sun Solaris versions 10 and earlier OpenSolaris versions prior to snv 119

Description The issue is related to the improper implementation of the nfs portmon setting in the NFSv4 server kernel module. This allows remote attackers to access shares and perform unauthorized actions such as reading, creating, and modifying arbitrary files.

Recommendations For Sun Solaris version 10 and earlier, update to a version that properly implements the nfs portmon setting. For OpenSolaris versions prior to snv 119, update to a version later than snv 119 to resolve the issue.