Computer Security
[EN] no-pyccku

EMC NetWorker address spoofing
updated since 28.01.2011
SecurityVulns ID:11386
Threat Level:
Description:librpc.dll library accepts RPC commands in UDP packets with spoofed IPs.
Affected:EMC : EMC NetWorker 7.5
 EMC : Emc Networker 7.6
 CVE-2011-0321 (librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before, and 7.6.x before does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to (1) register or (2) unregister RPC services, and consequently cause a denial of service or obtain sensitive information from interprocess communication, via crafted UDP packets containing service commands.)
Original documentdocumentZDI, ZDI-11-168: Multiple Vendor librpc.dll Remote Information Disclosure Vulnerability (17.05.2011)
 documentEMC, ESA-2011-003: EMC NetWorker librpc.dll spoofing vulnerability. (28.01.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod