Computer Security
[EN] securityvulns.ru no-pyccku


EMC Replication Manager / EMC AppSync privilege escalation
Published:02.01.2015
Source:
SecurityVulns ID:14191
Type:remote
Threat Level:
5/10
Description:Registry path is stored without quotes.
Affected:EMC : EMC Replication Manager 5.5
 EMC : EMC AppSync 2.1
CVE:CVE-2014-4634 (Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.)
Original documentdocumentEMC, ESA-2014-179: EMC Replication Manager and EMC AppSync Unquoted Service Path Enumeration Vulnerability (02.01.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod