Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1420

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2011-1420
Last Modified 21 Sep 2011 11:30:12
Published 28 Mar 2011 12:55:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2011-1420

Summary

EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC platforms uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.

Vulnerable Systems

Operating System

  • Oracle Solaris Sparc

Application

  • Emc Data Protection Advisor Collector 5.7

  • Emc Data Protection Advisor Collector 5.7.1


References

XF - emc-dataprotection-permissions-priv-esc(66323)

VUPEN - ADV-2011-0783

BID - 47036

BUGTRAQ - 20110325 ESA-2011-010: EMC Data Protection Advisor Collector arbitrary code execution with elevated privileges vulnerability

SECTRACK - 1025253

SREASON - 8169

SECUNIA - 43893


Last Updated: 27 May 2016 10:56:18