Published: 03/05/2013 Updated: 03/05/2013

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The nsrpush process in the client in EMC NetWorker prior to 7.6.5.3 and 8.x prior to 8.0.1.4 sets weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
emc networker 7.6.5
emc networker 7.6.4.5
emc networker 7.6.4
emc networker 7.6.4.2
emc networker 7.6.0.7
emc networker 7.6.0.4
emc networker 7.6.0.5
emc networker 7.6.0.2
emc networker 7.5.4.6
emc networker 7.5.4.5
emc networker 7.5.3.3
emc networker 7.5.3.4
emc networker 7.5.3.1
emc networker 7.4
emc networker 7.6.1.2
emc networker 7.6.1.3
emc networker 7.6.1.4
emc networker 7.6.1.5
emc networker 7.6.1
emc networker 7.5.4.2
emc networker 7.5.4.3
emc networker 7.5.3
emc networker 7.5
emc networker 7.5.2.4
emc networker 7.5.2.0
emc networker 7.5.2.2
emc networker 7.4.5.5
emc networker 7.0
emc networker 6.0
emc networker 6.1
emc networker 7.6.4.1
emc networker 7.6.3
emc networker 7.6.0.8
emc networker 7.6.0.6
emc networker 7.6.0.3
emc networker 7.5.4
emc networker 7.5.4.4
emc networker 7.5.4.7
emc networker 7.5.2.3
emc networker 7.4.5.4
emc networker 7.4.5.6
emc networker 7.3
emc networker
emc networker 7.6.4.4
emc networker 7.6.4.3
emc networker 7.6.1.1
emc networker 7.6.0.9
emc networker 7.5.3.5
emc networker 7.5.4.1
emc networker 7.5.3.2
emc networker 7.5.2.1
emc networker 7.4.5.10
emc networker 7.3.2
emc networker 7.2
emc networker 8.0.0.2
emc networker 8.0.0.1
emc networker 8.0
emc networker 8.0.1.3
emc networker 8.0.0.5
emc networker 8.0.0.3
emc networker 8.0.0.4
emc networker 8.0.0.6

CWE-264 http://archives.neohapsis.com/archives/bugtraq/2013-05/0013.html https://nvd.nist.gov

CVE-2013-0940

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect