Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 05/10/2015 Updated: 06/10/2015

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and previous versions allows remote malicious users to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.

Vulnerable Product	Search on Vulmon	Subscribe to Product
arkeia western digital arkeia

## # This module requires Metasploit: metasploitcom/download # Current source: githubcom/rapid7/metasploit-framework ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = GreatRanking include Msf::Exploit::Remote::Tcp include Msf::Exploit::Remote::HttpServer::HTML include Msf::Exploit::EXE include Ms ...

CWE-264 https://packetstormsecurity.com/files/132660/Western-Digital-Arkeia-11.0.13-Remote-Code-Execution.html https://www.exploit-db.com/exploits/37600/http://www.rapid7.com/db/modules/exploit/multi/misc/arkeia_agent_exec https://nvd.nist.gov https://www.exploit-db.com/exploits/37600/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2015-7709

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect