EUVD-2005-3655

Malware in sbrugna...

EUVD-2005-3656

Malware in sbrugna...

EMC Legato Networker Remote Exec Service Stack Overflow RCE

The EMC Legato Networker application running on the remote host is affected by a stack overflow condition in the Networker Remote Exec Service nsrexecd.exe, specifically within the sprintf function, when handling poll or kill requests. An unauthenticated, remote attacker can exploit this, via a...

EMC NetWorker Installed

EMC NetWorker formerly Legato NetWorker, a suite of enterprise level data protection software, is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid62945; scriptversion"1.14"; scriptsetattributeattribute:"pluginmodificationdate",...

FreeBSD : nwclient -- multiple vulnerabilities (d177d9f9-e317-11d9-8088-00123f0f7307)

Insecure file permissions, network access control and DNS usage put systems that use Legato NetWorker at risk. When the software is running, several files that contain sensitive information are created with insecure permissions. The information exposed include passwords and can therefore be used...

Multiple Vendor RPC portmapper Access Restriction Bypass

The RPC portmapper running on the remote host possibly included with EMC Legato Networker, IBM Informix Dynamic Server, or AIX has an access restriction bypass vulnerability. The service will only process pmapset and pmapunset requests that have a source address of '127.0.0.1'. Since communicatio...

Multiple Vendor librpc.dll Remote Information Disclosure Vulnerability

This vulnerability allows remote attackers to register RPC services on vulnerable installations of EMC Legato Networker and IBM Informix Dynamic Server. Authentication is not required to exploit this vulnerability. The flaw exists within the librpc.dll component which listens by default on UDP po...

Update Protection against Multiple Vendors librpc.dll Stack Buffer Overflow

A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. The vulnerability is due to insufficient validation of user input during authentication by the RPC protocol parsing library, librpc.dll, used by the Portmapper service portmap.exe. Successful...

Multiple Vendors RPC librpc.dll Stack Buffer Overflow (CVE-2009-2754)

Remote Procedure Call RPC is a protocol that a program can use to request a service from a program located on another computer in a network. The librpc.dll handles the RPC protocol parsing. A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. The...

Preemptive Protection against Multiple Vendors librpc.dll Stack Buffer Overflow

A buffer overflow vulnerability exists in IBM's Informix Dynamic Server and EMC's Legato Networker. Informix is a family of relational database management system RDBMS products by IBM. The vulnerability is due to insufficient validation of user input during authentication by the RPC protocol...

CVE-2009-2754

CVE-2009-2754 relates to a stack-based buffer overflow in librpc.dll’s authentication for the Portmapper service (portmap.exe) used by IBM Informix Dynamic Server (IDS) 10.x prior to 10.00.TC9 and 11.x prior to 11.10.TC3, and EMC Legato NetWorker. The issue is triggered by a crafted parameter siz...

Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of both IBM Informix Dynamic Server and EMC Legato Networker. User interaction is not required to exploit this vulnerability. The specific flaw exists within the RPC protocol parsing library, librpc.dll,...

EMC Legato NetWorker Remote Execution Service Buffer Overflow (CVE-2007-3618)

EMC Legato NetWorker is an enterprise level backup and recovery suite product. It provides backup functionality for Windows, Linux, Unix, Netware, and VMS environments. EMC Legato NetWorker is designed with a Server-Agent principle. The communication between nodes is facilitated via a series of...

FreeBSD Ports: nwclient

The remote host is missing an update to the system as announced in the referenced advisory. VID d177d9f9-e317-11d9-8088-00123f0f7307 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: nwclient

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

EMC Legato Networker nsrexecd.exe服务远程栈溢出漏洞

BUGTRAQ ID: 25375 CVECAN ID: CVE-2007-3618 EMC Legato NetWorker是一款跨平台的备份和恢复系统。 EMC Legato NetWorker的远程Exec服务（nsrexecd.exe）存在栈溢出漏洞，远程攻击者可能利用此漏洞控制服务器。 如果向poll或kill请求提交了超长的无效subcmd请求的话，就可以在对sprintf的调用中触发这个溢出，导致执行任意指令。 EMC Legato Networker 7.x.x 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

EMC Legato Networker buffer overflow

Buffer overflow in SUNRPC TCP/111 Networker Remote Exec Service...

EMC Legato Networker 'nsrexecd.exe' Overflow

Binary data 4182.prm...

CVE-2005-3658

EMC Legato NetWorker (and related Sun Solstice Backup and StorEdge EBS lines) is affected by CVE-2005-3658 due to multiple heap-based buffer overflows when processing malformed RPC requests. Affected versions include NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, with similar expo...

CVE-2005-3659

EMC Legato NetWorker (nsrd.exe) vulnerability CVE-2005-3659 allows remote denial of service through a malformed RPC request to program number 390109, triggering a NULL dereference in the nsrd service. Affected products include NetWorker 7.1.x before 7.1.4, 7.2.x before 7.2.1.Build.314, and relate...