547 matches found
CVE-2011-0647
The irccd.exe service in EMC Replication Manager Client before 5.3 and NetWorker Module for Microsoft Applications 2.1.x and 2.2.x allows remote attackers to execute arbitrary commands via the RunProgram function to TCP port 6542...
Design/Logic Flaw
The irccd.exe service in EMC Replication Manager Client before 5.3 and NetWorker Module for Microsoft Applications 2.1.x and 2.2.x allows remote attackers to execute arbitrary commands via the RunProgram function to TCP port 6542...
CVE-2011-0647
CVE-2011-0647 is a remote code execution vulnerability in EMC Replication Manager (embedded in NetWorker Module for Microsoft Applications) prior to version 5.3. The irccd.exe service exposes TCP port 6542 and accepts commands via an XML-based RunProgram function; an attacker can execute arbitrar...
CVE-2011-0647
The irccd.exe service in EMC Replication Manager Client before 5.3 and NetWorker Module for Microsoft Applications 2.1.x and 2.2.x allows remote attackers to execute arbitrary commands via the RunProgram function to TCP port 6542...
CVE-2011-0321
librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to 1 register or 2 unregister RPC services, and consequently cause a denial o...
Design/Logic Flaw
librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to 1 register or 2 unregister RPC services, and consequently cause a denial o...
CVE-2011-0321
librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to 1 register or 2 unregister RPC services, and consequently cause a denial o...
CVE-2011-0321
EMC NetWorker’s librpc.dll (nsrexecd) is vulnerable to a UDP-based spoofing flaw that permits remote attackers to register or unregister RPC services. The affected versions include EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2. The root cause is inadequate mitigat...
ESA-2011-003: EMC NetWorker librpc.dll spoofing vulnerability.
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2011-003: EMC NetWorker librpc.dll spoofing vulnerability. EMC Identifier: ESA-2011-003 CVE Identifier: CVE-2011-0321 Severity Rating: CVSS v2 Base Score: 8.5 AV:N/AC:L/Au:N/C:P/I:N/A:C Affected products: EMC NetWorker earlier than 7.5.3.5 EMC...
Multiple Vendors RPC librpc.dll Stack Buffer Overflow (CVE-2009-2754)
Remote Procedure Call RPC is a protocol that a program can use to request a service from a program located on another computer in a network. The librpc.dll handles the RPC protocol parsing. A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. The...
Preemptive Protection against Multiple Vendors librpc.dll Stack Buffer Overflow
A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. Informix is a family of relational database management system RDBMS products by IBM. The vulnerability is due to insufficient validation of user input during authentication by the RPC protocol...
CVE-2009-2754
CVE-2009-2754 relates to a stack-based buffer overflow in librpc.dll’s authentication for the Portmapper service (portmap.exe) used by IBM Informix Dynamic Server (IDS) 10.x prior to 10.00.TC9 and 11.x prior to 11.10.TC3, and EMC Legato NetWorker. The issue is triggered by a crafted parameter siz...
Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of both IBM Informix Dynamic Server and EMC Legato Networker. User interaction is not required to exploit this vulnerability. The specific flaw exists within the RPC protocol parsing library, librpc.dll,...
EMC Legato NetWorker Remote Execution Service Buffer Overflow (CVE-2007-3618)
EMC Legato NetWorker is an enterprise level backup and recovery suite product. It provides backup functionality for Windows, Linux, Unix, Netware, and VMS environments. EMC Legato NetWorker is designed with a Server-Agent principle. The communication between nodes is facilitated via a series of...
CVE-2008-6219
nsrexecd.exe in multiple EMC Networker products including EMC NetWorker Server, Storage Node, and Client 7.3.x and 7.4, 7.4.1, 7.4.2, Client and Storage Node for Open VMS 7.3.2 ECO6 and earlier, Module for Microsoft Exchange 5.1 and earlier, Module for Microsoft Applications 2.0 and earlier, Modu...
Design/Logic Flaw
nsrexecd.exe in multiple EMC Networker products including EMC NetWorker Server, Storage Node, and Client 7.3.x and 7.4, 7.4.1, 7.4.2, Client and Storage Node for Open VMS 7.3.2 ECO6 and earlier, Module for Microsoft Exchange 5.1 and earlier, Module for Microsoft Applications 2.0 and earlier, Modu...
CVE-2008-6219
nsrexecd.exe in multiple EMC Networker products including EMC NetWorker Server, Storage Node, and Client 7.3.x and 7.4, 7.4.1, 7.4.2, Client and Storage Node for Open VMS 7.3.2 ECO6 and earlier, Module for Microsoft Exchange 5.1 and earlier, Module for Microsoft Applications 2.0 and earlier, Modu...
CVE-2008-6219
nsrexecd.exe in multiple EMC Networker products (NetWorker Server, Storage Node, and Client 7.3.x/7.4.x; OpenVMS 7.3.2 ECO6 and earlier; Module for Microsoft Exchange 5.1 and earlier; Module for Microsoft Applications 2.0 and earlier; Module for Meditech 2.0 and earlier; PowerSnap 2.4 SP1 and ear...
EMC NetWorker产品nsrexecd.exe RPC请求拒绝服务漏洞
BUGTRAQ ID: 31866 EMC NetWorker之前被称为Legato NetWorker,是一款跨平台的备份和恢复系统。 EMC NetWorker产品所使用的RPC接口没有对用于在堆上分配内存的参数执行边界检查。有漏洞的NetWorker产品使用nsrexecd.exe进程。远程攻击者可以向RPC接口反复发送请求,每次都会分配更多的内存,最终会耗尽系统资源导致拒绝服务的情况。 EMC Networker PowerSnap 2.4 SP2 EMC Networker for Open VMS 7.3.2 ECO7 EMC Networker for Microsoft...
FreeBSD Ports: nwclient
The remote host is missing an update to the system as announced in the referenced advisory. VID d177d9f9-e317-11d9-8088-00123f0f7307 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...