Vulnerability CVE-2012-0409


Published: 2012-06-01   Modified: 2012-06-02

Description:
Multiple buffer overflows in EMC AutoStart 5.3.x and 5.4.x before 5.4.3 allow remote attackers to cause a denial of service (agent crash) or possibly execute arbitrary code via crafted packets.

See advisories in our WLB2 database:
Topic
Author
Date
High
EMC AutoStart Multiple Buffer Overflows
ippingPoint\...
25.05.2012
High
EMC AutoStart Parsing Remote Code Execution Vulnerability
gwslabs.com
18.08.2012
High
EMC AutoStart ftAgent Remote Code Execution
gwslabs
23.08.2012

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial
Affected software
EMC -> Autostart 

 References:
http://www.securityfocus.com/archive/1/522835

Copyright 2021, cxsecurity.com

 

Back to Top