VYPR
Unrated severityNVD Advisory· Published Oct 14, 2008· Updated Jun 16, 2026

CVE-2008-4552

CVE-2008-4552

Description

The good_client function in nfs-utils 1.0.9, and possibly other versions before 1.1.3, invokes the hosts_ctl function with the wrong order of arguments, which causes TCP Wrappers to ignore netgroups and allows remote attackers to bypass intended access restrictions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

27
  • NFS Utils/nfs-utils27 versions
    cpe:2.3:a:nfs:nfs-utils:*:*:*:*:*:*:*:*+ 26 more
    • cpe:2.3:a:nfs:nfs-utils:*:*:*:*:*:*:*:*range: <=1.1.2
    • cpe:2.3:a:nfs:nfs-utils:0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:0.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:0.3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:0.3.3:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.10:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.11:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.12:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.7:pre-1:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.7:pre-2:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.8:rc-1:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.8:rc-2:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.8:rc-3:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.8:rc-4:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.0.9:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.1.0:rc-1:*:*:*:*:*:*
    • cpe:2.3:a:nfs:nfs-utils:1.1.1:*:*:*:*:*:*:*
    • (no CPE)range: <1.1.3

Patches

Vulnerability mechanics

References

20

News mentions

0

No linked articles in our index yet.