EMC Corporation Legato NetWorker 6.1

CPE Details

EMC Corporation Legato NetWorker 6.1
emc
legato_networker
6.1
2007-08-23
19h16 +00:00
2008-03-25
18h15 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:emc:legato_networker:6.1:*:*:*:*:*:*:*

Informations

Vendor

emc

Product

legato_networker

Version

6.1

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2009-2754 2010-03-05 15h00 +00:00 Integer signedness error in the authentication functionality in librpc.dll in the Informix Storage Manager (ISM) Portmapper service (aka portmap.exe), as used in IBM Informix Dynamic Server (IDS) 10.x before 10.00.TC9 and 11.x before 11.10.TC3 and EMC Legato NetWorker, allows remote attackers to execute arbitrary code via a crafted parameter size that triggers a stack-based buffer overflow.
10
CVE-2005-0357 2005-08-20 02h00 +00:00 EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 rely on AUTH_UNIX authentication, which relies on user ID for authentication and allows remote attackers to bypass authentication and gain privileges by spoofing a username or UID.
7.5
CVE-2005-0358 2005-08-20 02h00 +00:00 EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.
7.5
CVE-2005-0359 2005-08-20 02h00 +00:00 The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the pmap_set and pmap_unset commands, which allows remote attackers to (1) cause a denial of service by using pmap_unset to un-register a NetWorker service, or (2) obtain sensitive information from NetWorker services by using pmap_set to register a new service.
6.4