CVE-2007-3618

3 documents3 sources

Severity

9.3CRITICAL

EPSS

20.0%

top 4.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

EMC Legato Networker

Timeline

PublishedAug 21

Latest updateMay 1

Description

Stack-based buffer overflow in the NetWorker Remote Exec Service (nsrexecd.exe) in EMC Software NetWorker 7.x.x allows remote attackers to execute arbitrary code via a (1) poll or (2) kill request with a "long invalid subcmd."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

▶NVDemc/legato_networker5 versions+4

Patches

Patch: secunia.com ↗Patch: www.securityfocus.com ↗Patch: www.securitytracker.com ↗

🔴Vulnerability Details

GHSA

GHSA-xc6c-w4cc-h95v: Stack-based buffer overflow in the NetWorker Remote Exec Service (nsrexecd↗2022-05-01

▶

CVEList

CVE-2007-3618: Stack-based buffer overflow in the NetWorker Remote Exec Service (nsrexecd↗2007-08-21

▶