142 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the online help in Hitachi Device Manager, Tiered Storage Manager, Replication Manager, and Global Link Manager before 8.1.2-00, and Compute Systems Manager before 7.6.1-08 and 8.x before 8.1.2-00, as used in Hitachi Command Suite, allows remote attackers...
CVE-2015-1565
CVE-2015-1565 describes a cross-site scripting (XSS) vulnerability in the online help of Hitachi Command Suite components, specifically Hitachi Device Manager, Tiered Storage Manager, Replication Manager, and Global Link Manager (pre-8.1.2-00) and Compute Systems Manager (pre-7.6.1-08 and 8.x bef...
ESA-2014-179: EMC Replication Manager and EMC AppSync Unquoted Service Path Enumeration Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-179: EMC Replication Manager and EMC AppSync Unquoted Service Path Enumeration Vulnerability EMC Identifier: ESA-2014-179 CVE Identifier: CVE-2014-4634 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products: EMC...
EMC Replication Manager / EMC AppSync privilege escalation
Registry path is stored without quotes...
EMC Replication Manager/AppSync Local Elevation of Privilege Vulnerability
EMC Replication Manager is a solution that manages replication technology and coordinates the entire data replication process through a unified management console. A local elevation of privilege vulnerability exists in EMC Replication Manager/AppSync, which can be exploited by a local attacker to...
CVE-2014-4634
Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character...
Design/Logic Flaw
Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character...
CVE-2014-4634
CVE-2014-4634 describes an unquoted Windows search path vulnerability in EMC Replication Manager (pre-5.5.2) and EMC AppSync (pre-2.1.0). The underlying issue is an unquoted service path used by Windows services, enabling a local attacker to abuse a Trojan horse executable whose name starts with ...
CVE-2014-4634
Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character...
EMC Replication Manager Command Execution - Ver2 (CVE-2011-0647)
A command execution vulnerability has been reported in Emc Replication Manager and Emc Networker Module. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
EMC Replication Manager 5.2.1 命令执行漏洞
No description provided by source...
ESA-2013-092: EMC Replication Manager Unquoted File Path Enumeration Vulnerability
ESA-2013-092.txt -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2013-092: EMC Replication Manager Unquoted File Path Enumeration Vulnerability EMC Identifier: ESA-2013-092 CVE Identifier: CVE-2013-6182 Severity Rating: CVSS v2 Base Score: 6.8 AV:L/AC:L/Au:S/C:C/I:C/A:C Affected products: EMC...
EMC Replication Manager directory traversal
Directory traversal via user scripts...
EMC Replication Manager文件路径处理本地权限提升漏洞
Bugtraq ID:64520 CVE ID:CVE-2013-6182 EMC Replication Manager是一款通过统一的管理控制台管理复制技术并协调整个数据复制过程的解决方案。 EMC Replication Manager允许在文件路径中包含未加引号元素的脚本,允许用户创建包含空格或其他分隔符元素的脚本,可访问父路径中的资源并执行,可提升权限。 0 EMC Replication Manager 厂商补丁: EMC ----- EMC Replication Manager 5.5.0已经修复该漏洞,建议用户下载更新:...
CVE-2013-6182
Unquoted Windows search path vulnerability in EMC Replication Manager before 5.5 allows local users to gain privileges via a crafted application in a parent directory of an intended directory...
Directory traversal
Unquoted Windows search path vulnerability in EMC Replication Manager before 5.5 allows local users to gain privileges via a crafted application in a parent directory of an intended directory...
CVE-2013-6182
Unquoted Windows search path vulnerability in EMC Replication Manager before 5.5 allows local users to gain privileges via a crafted application in a parent directory of an intended directory...
CVE-2013-6182
EMC Replication Manager prior to version 5.5 is affected by an unquoted file-path vulnerability that allows local privilege escalation via crafted scripts that reside in a parent directory of a target path. The root cause is unquoted elements in file paths used by user-created scripts, enabling a...
EMC Replication Manager Command Execution
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'EMC Replication Manager Command Execution', 'Description' = %q This module exploits a remote command-injection vulnerability in EMC...
EMC Replication Manager Command Execution Vulnerability
This Metasploit module exploits a remote command-injection vulnerability in EMC Replication Manager client irccd.exe. By sending a specially crafted message invoking RunProgram function an attacker may be able to execute arbitrary code commands with SYSTEM privileges. Affected products are EMC...