Buffer overflow

Buffer overflow in the server in EMC NetWorker 7.5.x and 7.6.x before 7.6.3 SP1 Cumulative Release build 851 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via unspecified vectors...

CVE-2012-0395

Buffer overflow in the server in EMC NetWorker 7.5.x and 7.6.x before 7.6.3 SP1 Cumulative Release build 851 allows remote attackers to cause a denial of service daemon crash or possibly execute arbitrary code via unspecified vectors...

CVE-2012-0395

EMC NetWorker Server 7.5.x and 7.6.x (up to 7.6.3 SP1 Cumulative Release 851) contains a buffer overflow in the RPC handling path (indexd.exe) that can allow remote, unauthenticated code execution or denial of service. Exploitation details point to RPC processing with opcode 0x01, where user-supp...

FreeBSD : nwclient -- multiple vulnerabilities (d177d9f9-e317-11d9-8088-00123f0f7307)

Insecure file permissions, network access control and DNS usage put systems that use Legato NetWorker at risk. When the software is running, several files that contain sensitive information are created with insecure permissions. The information exposed include passwords and can therefore be used...

Preemptive Protection Against EMC NetWorker librpc.dll Security Check Bypass (CVE-2011-0321)

A security bypass vulnerability exists in EMC Legato Networker...

Multiple Vendor RPC portmapper Access Restriction Bypass

The RPC portmapper running on the remote host possibly included with EMC Legato Networker, IBM Informix Dynamic Server, or AIX has an access restriction bypass vulnerability. The service will only process pmapset and pmapunset requests that have a source address of '127.0.0.1'. Since communicatio...

EMC NetWorker address spoofing

librpc.dll library accepts RPC commands in UDP packets with spoofed IPs...

Multiple Vendor librpc.dll Remote Information Disclosure Vulnerability

This vulnerability allows remote attackers to register RPC services on vulnerable installations of EMC Legato Networker and IBM Informix Dynamic Server. Authentication is not required to exploit this vulnerability. The flaw exists within the librpc.dll component which listens by default on UDP po...

CVE-2011-1421

EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors...

Design/Logic Flaw

EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors...

CVE-2011-1421

EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors...

CVE-2011-1421

EMC NetWorker 7.5.x (before 7.5.4.3) and 7.6.x (before 7.6.1.5) are affected when the client push feature is enabled. The issue is weak permissions set on an unspecified file, enabling local users to gain elevated privileges. Exploitation details are not provided in the sources. Remediation is to...

EMC Networker weak permissions

Weak permissions for executable file...

ESA-2011-013: EMC NetWorker arbitrary code execution with elevated privileges vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-013: EMC NetWorker arbitrary code execution with elevated privileges vulnerability. EMC Identifier: ESA-2011-013 CVE Identifier: CVE-2011-1421 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products: EMC SW: EMC...

ESA-2011-012: Security update for EMC NetWorker Module for Microsoft Applications

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-012: Security update for EMC NetWorker Module for Microsoft Applications. EMC Identifier: ESA-2011-012 CVE Identifier: CVE-2011-0647 Severity Rating: CVSS v2 Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C Affected products: EMC NetWorker Module f...

EMC Networker Detection

This host is running EMC Networker, a centralized, automated backup solution. OpenVAS Vulnerability Test $Id: gbemcnetworkerdetect.nasl 7000 2017-08-24 11:51:46Z teissa $ EMC Networker Detection Authors: Michael Meyer Copyright: Copyright c 2011 Greenbone Networks GmbH This program is free...

Dell EMC NetWorker Detection (PortMapper)

PortMapper based detection of Dell EMC NetWorker. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Dell EMC NetWorker Detection (HTTP)

HTTP based detection of Dell EMC NetWorker. Copyright C 2011 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

EMC Networker Management Console Detection

The EMC Networker Management Console is running at this port. OpenVAS Vulnerability Test $Id: gbemcnetworkermanagementconsoledetect.nasl 7029 2017-08-31 11:51:40Z teissa $ EMC Networker Management Console Detection Authors: Michael Meyer Copyright: Copyright c 2011 Greenbone Networks GmbH This...

Update Protection against Multiple Vendors librpc.dll Stack Buffer Overflow

A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. The vulnerability is due to insufficient validation of user input during authentication by the RPC protocol parsing library, librpc.dll, used by the Portmapper service portmap.exe. Successful...