EMC NetWorker is a centralized data backup solution.
A buffer overflow vulnerability in the Remote Exec service (
**nsrexecd.exe**) allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a poll or kill request.
For fix information see EMC knowledge base article esg83899 which is available from EMC Powerlink.
Exploit works on EMC NetWorker 7.3.2 on Windows 2000, and on Windows Server 2003 with Data Execution Prevention (DEP) enabled.
Windows Server 2003 SP1
Windows Server 2003 SP2 / Windows Server 2003