Buffer overflow in Emc Networker

CVE-2012-0395

Buffer overflow in the server in EMC NetWorker 7.5.x and 7.6.x before 7.6.3 SP1 Cumulative Release build 851 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via unspecified vectors.

Vulnerability class: Buffer Overflow

EPSS: 0.035 (87.9th percentile) — read the EPSS interpretation.

Affected products

Emc Networker — versions 7.5, 7.5.2.0, 7.5.2.1
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

20120126 ESA-2012-005: EMC NetWorker buffer overflow vulnerability (mailing-list, x_refsource_BUGTRAQ)