Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.163 views

EMC AlphaStor Library Manager Arbitrary Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'EMC AlphaStor Library Manager Arbitrary Command Execution', 'Description' = %q EMC AlphaStor Library Manager is prone to a remote command-injecti...

10CVSS7AI score0.84999EPSS
Exploits6
Circl
Circladded 2018/05/29 3:50 p.m.10 views

CVE-2008-2157

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/emc/alphastordevicemanagerexec.rb 2018-05-29 15:50:33+00:00| seen|...

10CVSS5.5AI score0.84999EPSS
Exploits6References2
Tenable Nessus
Tenable Nessusadded 2008/07/01 12:0 a.m.21 views

EMC AlphaStor Library Manager Remote Code Execution

The installed instance of AlphaStor Library Manager is vulnerable to a command execution flaw when it receives a packet with a 0x44 code. Packet string argument is used unsanitized as a call to the 'system' function. An unauthenticated, remote attacker may be able to exploit this flaw to execute...

10CVSS5.9AI score0.84999EPSS
Exploits6References2
NVD
NVDadded 2008/05/29 4:32 p.m.10 views

CVE-2008-2157

robotd in the Library Manager in EMC AlphaStor 3.1 SP1 for Windows allows remote attackers to execute arbitrary commands via an unspecified string field in a packet to TCP port 3500...

10CVSS7.5AI score0.84999EPSS
Exploits6References5
d2
d2added 2008/05/29 4:32 p.m.40 views

DSquare Exploit Pack: D2SEC_ALPHASTOR_LM

Name| d2secalphastorlm ---|--- CVE| CVE-2008-2157 Exploit Pack| D2ExploitPack Description| EMC AlphaStor Library Manager Remote Command Execution Vulnerability Notes|...

10CVSS3.5AI score0.84999EPSS
Exploits6
Cvelist
Cvelistadded 2008/05/29 4:0 p.m.19 views

CVE-2008-2157

robotd in the Library Manager in EMC AlphaStor 3.1 SP1 for Windows allows remote attackers to execute arbitrary commands via an unspecified string field in a packet to TCP port 3500...

7.5AI score0.84999EPSS
Exploits6References5
CVE
CVEadded 2008/05/29 4:0 p.m.51 views

CVE-2008-2157

The provided connected documents confirm a remote command-execution vulnerability (CVE-2008-2157) in EMC AlphaStor products. The EMC AlphaStor Library Manager is vulnerable to arbitrary command execution via an unsanitized packet string argument that is processed by a system() call when handling ...

10CVSS7.5AI score0.84999EPSS
Exploits6References5Affected Software1
seebug.org
seebug.orgadded 2008/05/29 12:0 a.m.47 views

EMC AlphaStor库管理器任意命令执行漏洞

CVECAN ID: CVE-2008-2157 AlphaStor是用于管理磁盘的应用程序组件。 AlphaStor中库管理器(Library Manager)用于管理在分布的位置上替换磁盘驱动。该管理器由单个进程robotd组成,在TCP 3500端口上监听入站连接。 如果对库管理器发送了特殊请求的话,robotd会使用报文中的字符串在系统上通过CreateProcess函数执行命令,这允许攻击者在主机上以SYSTEM权限执行任意程序。 EMC AlphaStor 3.1 SP1 for Windows EMC --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载...

10CVSS6.4AI score0.84999EPSS
Exploits6
Rows per page
Query Builder