CVE-2011-1421

Severity

69%

Complexity

34%

Confidentiality

165%

EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors.

EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors.

CVSS 2.0 Base Score 6.9. CVSS Attack Vector: local. CVSS Attack Complexity: medium. CVSS Vector: (AV:L/AC:M/Au:N/C:C/I:C/A:C).

Overview

Type

EMC NetWorker

First reported 13 years ago

2011-04-22 10:55:00

Last updated 6 years ago

2018-10-09 19:30:00

Affected Software

EMC NetWorker 7.5.2.0

7.5.2.0

EMC NetWorker 7.5.2.1

7.5.2.1

EMC NetWorker 7.5.2.2

7.5.2.2

EMC NetWorker 7.5.2.3

7.5.2.3

EMC NetWorker 7.5.2.4

7.5.2.4

EMC NetWorker 7.5.3

7.5.3

EMC NetWorker 7.5.3.1

7.5.3.1

EMC NetWorker 7.5.3.2

7.5.3.2

EMC NetWorker 7.5.3.3

7.5.3.3

EMC NetWorker 7.5.3.4

7.5.3.4

EMC NetWorker 7.5.3.5

7.5.3.5

EMC NetWorker 7.5.4

7.5.4

EMC NetWorker 7.5.4.1

7.5.4.1

EMC NetWorker 7.5.4.2

7.5.4.2

EMC NetWorker 7.6

7.6

EMC NetWorker 7.6 Service Pack 1

7.6

EMC NetWorker 7.6.0.2

7.6.0.2

EMC NetWorker 7.6.0.3

7.6.0.3

EMC NetWorker 7.6.0.4

7.6.0.4

EMC NetWorker 7.6.0.5

7.6.0.5

EMC NetWorker 7.6.0.6

7.6.0.6

EMC NetWorker 7.6.0.7

7.6.0.7

EMC NetWorker 7.6.0.8

7.6.0.8

EMC NetWorker 7.6.0.9

7.6.0.9

EMC NetWorker 7.6.1

7.6.1

EMC NetWorker 7.6.1.1

7.6.1.1

EMC NetWorker 7.6.1.2

7.6.1.2

EMC NetWorker 7.6.1.3

7.6.1.3

EMC NetWorker 7.6.1.4

7.6.1.4

References

44237

Vendor Advisory

8214

1025383

20110418 ESA-2011-013: EMC NetWorker arbitrary code execution with elevated privileges vulnerability

47410

ADV-2011-1025

Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.