[NT] EMC NetWorker Denial of Service Vulnerability
- From: SecuriTeam <support@xxxxxxxxxxxxxx>
- Date: 23 Oct 2008 17:17:03 +0200
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
The SecuriTeam alerts list - Free, Accurate, Independent.
Get your security news from a reliable source.
http://www.securiteam.com/mailinglist.html
- - - - - - - - -
EMC NetWorker Denial of Service Vulnerability
------------------------------------------------------------------------
SUMMARY
A resource exhaustion vulnerability exists throughout multiple EMC
products through an exploited RPC interface.
DETAILS
Vulnerable Systems:
* NetWorker Server, Storage Node and Client 7.3.x and 7.4, 7.4.1, 7.4.2
* NetWorker Client and Storage Node for Open VMS 7.3.2 ECO6 and earlier
* NetWorker Module for Microsoft Exchange 5.1 and earlier
* NetWorker Module for Microsoft Applications 2.0 and earlier
* NetWorker Module for Meditech 2.0 and earlier
* NetWorker PowerSnap 2.4 SP1 and earlier
Immune Systems:
* NetWorker Server, Storage Node and Client 7.4 SP3
* NetWorker Server, Storage Node and Client 7.3 SP4 build 565
* NetWorker Client and Storage Node for Open VMS 7.3.2 ECO7
* NetWorker Module for Microsoft Exchange 5.1 SP1
* NetWorker Module for Microsoft Applications 2.1
* NetWorker Module for Meditech 2.0 SP1
* NetWorker PowerSnap 2.4 SP2
The RPC interface used by the affected EMC products does not properly
enforce bounds checking on a parameter which is used to allocate memory on
the heap. The vulnerable NetWorker products use the process
"nsrexecd.exe". A remote attacker can exploit this by repeatedly sending
requests to the RPC interface, each time allocating more and more memory.
Eventually system resources will be exhausted, and denial of service is
achieved.
Solutions:
Use the solution provided by EMC <http://powerlink.emc.com/>
http://powerlink.emc.com/
ADDITIONAL INFORMATION
The information has been provided by FortiGuard Global Security Research
Team.
The original article can be found at:
<http://www.fortiguardcenter.com/advisory/FGA-2008-23.html>
http://www.fortiguardcenter.com/advisory/FGA-2008-23.html
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@xxxxxxxxxxxxxx
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@xxxxxxxxxxxxxx
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Prev by Date: [UNIX] Veritas Storage Foundation Arbitrary File Read Vulnerability
- Next by Date: [NT] HP OpenView Products Shared Trace Service Denial of Service
- Previous by thread: [UNIX] Veritas Storage Foundation Arbitrary File Read Vulnerability
- Next by thread: [NT] HP OpenView Products Shared Trace Service Denial of Service
- Index(es):
