CVE-2012-0395

Related Files

Zero Day Initiative Advisory 12-025

Posted Feb 8, 2012

Authored by Tipping Point | Site zerodayinitiative.com

Zero Day Initiative Advisory 12-025 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Networker. Authentication is not required to exploit this vulnerability. The specific flaw exists within the way the indexd.exe handles rpc calls with opcode 0x1 for program 0x0005F3D9. While processing this message a user supplied string is copied into a fixed size stack buffer. This can result in a buffer overflow which can lead to remote code execution under the context of the current process.

tags | advisory, remote, overflow, arbitrary, code execution

advisories | CVE-2012-0395

SHA-256 | cc67964915fcfb176e4d7e59a6f033eda56531c16675a4a919fa72e82ca22936

Download | Favorite | View

EMC NetWorker Buffer Overflow

Posted Jan 26, 2012

Authored by Tal Zeltzer | Site emc.com

EMC NetWorker Server 7.5.x and 7.6.x contain a buffer overflow vulnerability which may possibly be exploited to cause a denial of service or, possibly, arbitrary code execution.

tags | advisory, denial of service, overflow, arbitrary, code execution

advisories | CVE-2012-0395

SHA-256 | 0c2f16df9895b9a9de4b10982e56916be916e3bb0dc120e8232b516c0554f882

Download | Favorite | View