CVE-2011-1421

Sažetak

EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors.

Reference

http://secunia.com/advisories/44237
http://securityreason.com/securityalert/8214
http://securitytracker.com/id?1025383
http://www.securityfocus.com/archive/1/517532/100/0/threaded
http://www.securityfocus.com/bid/47410
http://www.vupen.com/english/advisories/2011/1025

CVSS

Base:	6.9
Impact:	10.0
Exploitability:	3.4

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

09-10-2018 - 19:30

Objavljeno

22-04-2011 - 10:55