FreeBSD Ports: nwclient

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

EMC AlphaStor Device Manager Detection

The remote host is running a EMC AlphaStor Device Manager service. AlphaStor is a tape backup management and library sharing for EMC NetWorker. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid33283;...

EMC AlphaStor Library Manager Detection

The remote host is running a EMC AlphaStor Library Manager service. AlphaStor is a tape backup management and library sharing for EMC NetWorker. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include"compat.inc"; if description scriptid33280;...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

EMC NetWorker Remote Exec service subcmd buffer overflow

Added: 11/09/2007 CVE: CVE-2007-3618 BID: 25375 OSVDB: 39744 Background EMC NetWorker is a centralized data backup solution. Problem A buffer overflow vulnerability in the Remote Exec service nsrexecd.exe allows remote attackers to execute arbitrary commands by sending a long, invalid subcmd to a...

CVE-2003-1528

CVE-2003-1528 affects Fujitsu Siemens NetWorker 6.0. The vulnerability is due to a symlink attack on the nsrsh[PID] temporary file, enabling a local attacker to overwrite arbitrary files. Root cause: insecure handling of temporary files used by nsr_shutdown leading to arbitrary file overwrite. Im...

CVE-2003-1528

nsrshutdown in Fujitsu Siemens NetWorker 6.0 allows local users to overwrite arbitrary files via a symlink attack on the nsrshPID temporary file...

Stack overflow

Stack-based buffer overflow in the NetWorker Remote Exec Service nsrexecd.exe in EMC Software NetWorker 7.x.x allows remote attackers to execute arbitrary code via a 1 poll or 2 kill request with a "long invalid subcmd."...

CVE-2007-3618

Stack-based buffer overflow in the NetWorker Remote Exec Service nsrexecd.exe in EMC Software NetWorker 7.x.x allows remote attackers to execute arbitrary code via a 1 poll or 2 kill request with a "long invalid subcmd."...

CVE-2007-3618

Stack-based buffer overflow in the NetWorker Remote Exec Service nsrexecd.exe in EMC Software NetWorker 7.x.x allows remote attackers to execute arbitrary code via a 1 poll or 2 kill request with a "long invalid subcmd."...

CVE-2007-3618

EMC NetWorker 7.x.x is affected by a stack-based buffer overflow in the Remote Exec Service (nsrexecd.exe). The vulnerability occurs when processing poll or kill requests containing a long invalid subcmd, allowing unauthenticated remote attackers to execute arbitrary code on the affected host. Pu...

EMC Legato Networker nsrexecd.exe服务远程栈溢出漏洞

BUGTRAQ ID: 25375 CVECAN ID: CVE-2007-3618 EMC Legato NetWorker是一款跨平台的备份和恢复系统。 EMC Legato NetWorker的远程Exec服务（nsrexecd.exe）存在栈溢出漏洞，远程攻击者可能利用此漏洞控制服务器。 如果向poll或kill请求提交了超长的无效subcmd请求的话，就可以在对sprintf的调用中触发这个溢出，导致执行任意指令。 EMC Legato Networker 7.x.x 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

ZDI-07-049: EMC Legato Networker Remote Exec Service Stack Overflow Vulnerabilities

ZDI-07-049: EMC Legato Networker Remote Exec Service Stack Overflow Vulnerabilities http://www.zerodayinitiative.com/advisories/ZDI-07-049.html August 20, 2007 -- CVE ID: CVE-2007-3618 -- Affected Vendor: EMC Software -- Affected Products: Networker 7.x.x -- TippingPointTM IPS Customer Protection...

EMC Legato Networker buffer overflow

Buffer overflow in SUNRPC TCP/111 Networker Remote Exec Service...

EMC Legato Networker 'nsrexecd.exe' Overflow

Binary data 4182.prm...

EMC Legato Networker Remote Exec Service Stack Overflow Vulnerabilities

These vulnerabilities allow remote attackers to execute arbitrary code on vulnerable installations of EMC Networker. Authentication is not required to exploit this vulnerability. The specific flaws exist in the Networker Remote Exec Service, nsrexecd.exe. The location of this service is available...

EMC NetWorker管理控制台远程绕过认证漏洞

EMC NetWorker之前被称为Legato NetWorker，是一款跨平台的备份和恢复系统。 EMC NetWorker的管理控制台在连接到NetWorker备份服务器时使用了弱加密机制。如果远程攻击者了解这种认证机制的话，就可以通过中间人攻击扮演成为NetWorker管理控制台系统，以root用户权限连接到受影响的服务器。 EMC Networker 7.3.2 临时解决方法： 阻断对2638/tcp和2638/udp端口的访问。 厂商补丁： EMC --- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

CVE-2006-3892

The Management Console server in EMC NetWorker formerly Legato NetWorker 7.3.2 before Jumbo Update 1 uses weak authentication, which allows remote attackers to execute arbitrary commands...