The nfsrvd_readdir function in sys/fs/nfsserver/nfs_nfsdport.c in the new NFS server in FreeBSD 8.0 through 9.1-RELEASE-p3 does not verify that a READDIR request is for a directory node, which allows. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.
Buffer Overflow
Denial Of Service
RCE
Freebsd
NVD
CVSS 2.0
7.5
EPSS
2.3%