Lucene search
RootSSV:2149HistoryAug 21, 2007 - 12:00 a.m.
EMC Legato Networker nsrexecd.exe服务远程栈溢出漏洞
2007-08-2100:00:00
Root
www.seebug.org
11
0.86 High
EPSS
Percentile
98.2%
BUGTRAQ ID: 25375
CVE(CAN) ID: CVE-2007-3618
EMC Legato NetWorker是一款跨平台的备份和恢复系统。
EMC Legato NetWorker的远程Exec服务(nsrexecd.exe)存在栈溢出漏洞,远程攻击者可能利用此漏洞控制服务器。
如果向poll或kill请求提交了超长的无效subcmd请求的话,就可以在对sprintf()的调用中触发这个溢出,导致执行任意指令。
EMC Legato Networker 7.x.x
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
<a href target=“"_blank"”>http://www.emc.com/products/storage_management/navisphere.jsp</a>
Related
saint
saint
EMC NetWorker Remote Exec service subcmd buffer overflow
2007-11-09 00:00:00
EMC NetWorker Remote Exec service subcmd buffer overflow
2007-11-09 00:00:00
EMC NetWorker Remote Exec service subcmd buffer overflow
2007-11-09 00:00:00
nessus
nessus
EMC Legato Networker Remote Exec Service Stack Overflow RCE
2016-10-20 00:00:00
prion
prion
Stack overflow
2007-08-21 21:17:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
ZDI-07-049: EMC Legato Networker Remote Exec Service Stack Overflow Vulnerabilities
2007-08-21 00:00:00
EMC Legato Networker buffer overflow
2007-08-21 00:00:00
cve
cve
CVE-2007-3618
2007-08-21 21:17:00
zdi
zdi
EMC Legato Networker Remote Exec Service Stack Overflow Vulnerabilities
2007-08-20 00:00:00