- Description
- The portmapper may act as a proxy and redirect service requests from an attacker, making the request appear to come from the local host, possibly bypassing authentication that would otherwise have taken place. For example, NFS file systems could be mounted through the portmapper despite export restrictions.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:sun:sunos:4.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "615FA6E4-4DE0-422A-9220-F747D95192C9"
},
{
"criteria": "cpe:2.3:o:sun:sunos:4.1.3c:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "915D5897-B5FF-4F26-936E-9BAEF2604A86"
}
],
"operator": "OR"
}
]
}
]