Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2288

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-2288
Last Modified 05 Mar 2013 11:59:22
Published 04 Sep 2012 07:04:48
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-2288

Summary

Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specifiers in a message.

Vulnerable Systems

Application

  • Emc Networker 7.6.3

  • Emc Networker 7.6.4

  • Emc Networker 8.0


References

BUGTRAQ - 20120830 ESA-2012-038: EMC NetWorker Format String Vulnerability

SECTRACK - 1027459

BID - 55330


Last Updated: 27 May 2016 11:01:50