Buffer overflow in Emc Networker

CVE-2012-4607

Buffer overflow in nsrindexd in EMC NetWorker 7.5.x and 7.6.x before 7.6.5, and 8.x before 8.0.0.6, allows remote attackers to execute arbitrary code via crafted SunRPC data.

Vulnerability class: Buffer Overflow

EPSS: 0.084 (92.5th percentile) — read the EPSS interpretation.

Affected products

Emc Networker — versions 7.5, 7.5.2.0, 7.5.2.1
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

20130107 ESA-2013-001: EMC NetWorker Buffer Overflow vulnerability (mailing-list, x_refsource_BUGTRAQ)