DESCRIPTION:
Some vulnerabilities have been reported in EMC NetWorker, which can
be exploited by malicious people to cause a DoS (Denial of Service)
or compromise a vulnerable system.
1) An error in the NetWorker server in the handling of corrupted RPC
packets can be exploited to crash the server.
2) Two unspecified errors can be exploited to gain access to, and
execute arbitrary code on, an affected system.
The vulnerabilities have been reported in version 7.2.1.
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
{"id": "SECURITYVULNS:DOC:11075", "bulletinFamily": "software", "title": "[SA18495] EMC NetWorker Unspecified Code Execution Vulnerability", "description": "\r\nTITLE:\r\nEMC NetWorker Unspecified Code Execution Vulnerability\r\n\r\nSECUNIA ADVISORY ID:\r\nSA18495\r\n\r\nVERIFY ADVISORY:\r\nhttp://secunia.com/advisories/18495/\r\n\r\nCRITICAL:\r\nModerately critical\r\n\r\nIMPACT:\r\nDoS, System access\r\n\r\nWHERE:\r\n>From local network\r\n\r\nSOFTWARE:\r\nLegato NetWorker 7.x\r\nhttp://secunia.com/product/2692/\r\n\r\nDESCRIPTION:\r\nSome vulnerabilities have been reported in EMC NetWorker, which can\r\nbe exploited by malicious people to cause a DoS (Denial of Service)\r\nor compromise a vulnerable system.\r\n\r\n1) An error in the NetWorker server in the handling of corrupted RPC\r\npackets can be exploited to crash the server.\r\n\r\n2) Two unspecified errors can be exploited to gain access to, and\r\nexecute arbitrary code on, an affected system.\r\n\r\nThe vulnerabilities have been reported in version 7.2.1.\r\n\r\nSOLUTION:\r\nApply hotfix.\r\n\r\nNetWorker 7.2.1:\r\nftp://ftp.legato.com/pub/NetWorker/Updates/LGTpa83990\r\n\r\nNOTE: Versions 7.1.4 and 7.3 have reportedly already incorporated the\r\nnecessary fix.\r\n\r\nPROVIDED AND/OR DISCOVERED BY:\r\nThe vendor credits iDEFENSE.\r\n\r\nORIGINAL ADVISORY:\r\nEMC Corporation:\r\nhttp://www.legato.com/support/websupport/product_alerts/011606_NW.htm\r\nftp://ftp.legato.com/pub/NetWorker/Updates/LGTpa83990/README.TXT\r\n\r\n----------------------------------------------------------------------\r\n\r\nAbout:\r\nThis Advisory was delivered by Secunia as a free service to help\r\neverybody keeping their systems up to date against the latest\r\nvulnerabilities.\r\n\r\nSubscribe:\r\nhttp://secunia.com/secunia_security_advisories/\r\n\r\nDefinitions: (Criticality, Where etc.)\r\nhttp://secunia.com/about_secunia_advisories/\r\n\r\n\r\nPlease Note:\r\nSecunia recommends that you verify all advisories you receive by\r\nclicking the link.\r\nSecunia NEVER sends attached files with advisories.\r\nSecunia does not advise people to install third party patches, only\r\nuse those supplied by the vendor.\r\n", "published": "2006-01-17T00:00:00", "modified": "2006-01-17T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:11075", "reporter": "Securityvulns", "references": [], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:10:15", "edition": 1, "viewCount": 1, "enchantments": {"score": {"value": 7.9, "vector": "NONE", "modified": "2018-08-31T11:10:15", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-2595", "CVE-2017-11075", "CVE-2008-7273", "CVE-2015-9286", "CVE-2020-11075", "CVE-2018-11075", "CVE-2008-7272"]}, {"type": "nessus", "idList": ["EMC_RSA_AM_8_3_P3.NASL"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:32652", "SECURITYVULNS:DOC:32654", "SECURITYVULNS:DOC:32653", "SECURITYVULNS:DOC:32656", "SECURITYVULNS:VULN:14755", "SECURITYVULNS:VULN:14753", "SECURITYVULNS:DOC:32651", "SECURITYVULNS:VULN:14720", "SECURITYVULNS:DOC:32660", "SECURITYVULNS:DOC:32658"]}], "modified": "2018-08-31T11:10:15", "rev": 2}, "vulnersScore": 7.9}, "affectedSoftware": []}
{"rst": [{"lastseen": "2020-10-30T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]89.34.170** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **44**.\n First seen: 2020-10-29T03:00:00, Last seen: 2020-10-30T03:00:00.\n IOC tags: **scan**.\nASN 17974: (First IP 36.89.33.0, Last IP 36.89.35.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-29T00:00:00", "id": "RST:F85067EE-9DD8-3B46-A565-5A586C7DB0AF", "href": "", "published": "2020-10-31T00:00:00", "title": "RST Threat feed. IOC: 36.89.34.170", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-29T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]92.85.146** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **43**.\n First seen: 2020-10-23T03:00:00, Last seen: 2020-10-29T03:00:00.\n IOC tags: **shellprobe**.\nASN 17974: (First IP 36.92.54.0, Last IP 36.92.144.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Cikarang\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-23T00:00:00", "id": "RST:45E7F1F3-428E-326D-931D-C749E7330250", "href": "", "published": "2020-10-30T00:00:00", "title": "RST Threat feed. IOC: 36.92.85.146", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-29T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **180[.]250.5.249** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **44**.\n First seen: 2020-10-28T03:00:00, Last seen: 2020-10-29T03:00:00.\n IOC tags: **scan**.\nASN 17974: (First IP 180.250.0.0, Last IP 180.250.10.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Jember\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-28T00:00:00", "id": "RST:71F99641-B061-3DBE-BE06-681576507171", "href": "", "published": "2020-10-30T00:00:00", "title": "RST Threat feed. IOC: 180.250.5.249", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-29T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]92.106.139** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **4**.\n First seen: 2020-02-14T03:00:00, Last seen: 2020-10-29T03:00:00.\n IOC tags: **generic**.\nASN 17974: (First IP 36.92.54.0, Last IP 36.92.144.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-02-14T00:00:00", "id": "RST:79D7DFEF-84E8-362F-A8AF-3DFBABA0896E", "href": "", "published": "2020-10-30T00:00:00", "title": "RST Threat feed. IOC: 36.92.106.139", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-28T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]89.59.90** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **30**.\n First seen: 2020-10-06T03:00:00, Last seen: 2020-10-28T03:00:00.\n IOC tags: **generic**.\nASN 17974: (First IP 36.89.48.0, Last IP 36.89.67.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-06T00:00:00", "id": "RST:38012703-A8E0-3DD4-B9E3-E4D3EA407DC0", "href": "", "published": "2020-10-29T00:00:00", "title": "RST Threat feed. IOC: 36.89.59.90", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-26T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]89.253.171** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **43**.\n First seen: 2020-10-20T03:00:00, Last seen: 2020-10-26T03:00:00.\n IOC tags: **shellprobe**.\nASN 17974: (First IP 36.89.248.0, Last IP 36.89.255.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Pasuruan\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-20T00:00:00", "id": "RST:DDC269AC-E8FE-3FF6-879B-480343FD07B9", "href": "", "published": "2020-10-27T00:00:00", "title": "RST Threat feed. IOC: 36.89.253.171", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-25T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]92.100.29** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **44**.\n First seen: 2020-10-24T03:00:00, Last seen: 2020-10-25T03:00:00.\n IOC tags: **scan**.\nASN 17974: (First IP 36.92.54.0, Last IP 36.92.144.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Bandar Lampung\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-24T00:00:00", "id": "RST:50D9DEE4-E946-39E1-B4FF-CC73060C0D49", "href": "", "published": "2020-10-26T00:00:00", "title": "RST Threat feed. IOC: 36.92.100.29", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-20T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]92.104.185** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **39**.\n First seen: 2020-10-12T03:00:00, Last seen: 2020-10-20T03:00:00.\n IOC tags: **generic**.\nASN 17974: (First IP 36.92.54.0, Last IP 36.92.144.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-12T00:00:00", "id": "RST:748A7CDE-45A7-367E-ABBB-739EE1F9684D", "href": "", "published": "2020-10-21T00:00:00", "title": "RST Threat feed. IOC: 36.92.104.185", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-20T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]91.174.130** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **44**.\n First seen: 2020-10-20T03:00:00, Last seen: 2020-10-20T03:00:00.\n IOC tags: **generic**.\nASN 17974: (First IP 36.91.112.0, Last IP 36.91.178.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-20T00:00:00", "id": "RST:942A3982-DDDE-357C-A63F-5E7606311B47", "href": "", "published": "2020-10-21T00:00:00", "title": "RST Threat feed. IOC: 36.91.174.130", "type": "rst", "cvss": {}}, {"lastseen": "2020-10-20T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]92.159.249** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **43**.\n First seen: 2020-10-19T03:00:00, Last seen: 2020-10-20T03:00:00.\n IOC tags: **generic**.\nASN 17974: (First IP 36.92.159.0, Last IP 36.92.181.255).\nASN Name \"TELKOMNETAS2AP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 11075 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-19T00:00:00", "id": "RST:331E8F26-807D-38ED-B043-589CECEF0AF8", "href": "", "published": "2020-10-21T00:00:00", "title": "RST Threat feed. IOC: 36.92.159.249", "type": "rst", "cvss": {}}]}
