Vulnerabilities > CVE-2008-0962 - Buffer Errors vulnerability in EMC Diskxtender 6.20.060
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Stack-based buffer overflow in the File System Manager for EMC DiskXtender 6.20.060 allows remote authenticated users to execute arbitrary code via a crafted request to the RPC interface.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Common Weakness Enumeration (CWE)
Common Attack Pattern Enumeration and Classification (CAPEC)
- Buffer Overflow via Environment Variables This attack pattern involves causing a buffer overflow through manipulation of environment variables. Once the attacker finds that they can modify an environment variable, they may try to overflow associated buffers. This attack leverages implicit trust often placed in environment variables.
- Overflow Buffers Buffer Overflow attacks target improper or missing bounds checking on buffer operations, typically triggered by input injected by an attacker. As a consequence, an attacker is able to write past the boundaries of allocated buffer regions in memory, causing a program crash or potentially redirection of execution as per the attackers' choice.
- Client-side Injection-induced Buffer Overflow This type of attack exploits a buffer overflow vulnerability in targeted client software through injection of malicious content from a custom-built hostile service.
- Filter Failure through Buffer Overflow In this attack, the idea is to cause an active filter to fail by causing an oversized transaction. An attacker may try to feed overly long input strings to the program in an attempt to overwhelm the filter (by causing a buffer overflow) and hoping that the filter does not fail securely (i.e. the user input is let into the system unfiltered).
- MIME Conversion An attacker exploits a weakness in the MIME conversion routine to cause a buffer overflow and gain control over the mail server machine. The MIME system is designed to allow various different information formats to be interpreted and sent via e-mail. Attack points exist when data are converted to MIME compatible format and back.
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 28728 CVE(CAN) ID: CVE-2008-0962 EMC DiskXtender是一款数据备份、迁移套件。 DiskXtender产品的文件系统管理器组件存在栈溢出漏洞。在处理UUID为b157b800-aef5-11d3-ae49-00600834c15f的RPC接口上的请求时,服务没有正确地验证请求中字符串的长度,如果用户提交了超长请求的话就可以触发这个溢出,导致以受影响服务的权限执行任意代码。但必须通过认证才能利用这个漏洞。 EMC DiskXtender 6.20.60 EMC --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: <a href=http://www.emc.com/products/family/diskxtender-family.htm target=_blank>http://www.emc.com/products/family/diskxtender-family.htm</a> |
| id | SSV:3160 |
| last seen | 2017-11-19 |
| modified | 2008-04-13 |
| published | 2008-04-13 |
| reporter | Root |
| title | EMC DiskXtender文件系统管理器远程栈溢出漏洞 |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=684
- http://secunia.com/advisories/29778
- http://www.osvdb.org/44418
- http://www.securityfocus.com/bid/28728
- http://www.securitytracker.com/id?1019828
- http://www.vupen.com/english/advisories/2008/1198/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41774