Computer Security
[EN] securityvulns.ru no-pyccku


EMC NetWorker address spoofing
updated since 28.01.2011
Published:17.05.2011
Source:
SecurityVulns ID:11386
Type:remote
Threat Level:
6/10
Description:librpc.dll library accepts RPC commands in UDP packets with spoofed IPs.
Affected:EMC : EMC NetWorker 7.5
 EMC : Emc Networker 7.6
CVE:CVE-2011-1210
 CVE-2011-0321 (librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to (1) register or (2) unregister RPC services, and consequently cause a denial of service or obtain sensitive information from interprocess communication, via crafted UDP packets containing service commands.)
Original documentdocumentZDI, ZDI-11-168: Multiple Vendor librpc.dll Remote Information Disclosure Vulnerability (17.05.2011)
 documentEMC, ESA-2011-003: EMC NetWorker librpc.dll spoofing vulnerability. (28.01.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod