CVE-2011-1739

Name of the Vulnerable Software and Affected Versions FreeBSD versions 7.4 through 8.2

Description The issue arises from the makemask function in mountd.c, which does not correctly handle a -network field specifying a CIDR block with a prefix length that is not an integer multiple of 8. This allows remote attackers to bypass intended access restrictions under certain circumstances via an NFS mount request.

Recommendations For FreeBSD versions 7.4 through 8.2, update to a version that includes a fix for the makemask function issue in mountd.c to prevent remote attackers from bypassing access restrictions.