EMC Replication Manager irccd.exe RunProgram 消息处理任意命令执行
critical Nessus 插件 ID 40849
语言:
简介
Arbitrary code can be executed on the remote host.描述
远程主机正在运行 EMC Replication Manager 客户端控制后台程序。此软件的远程版本受到远程命令执行漏洞的影响。
未经身份验证的攻击者可通过将特别构建的数据包发送到远程主机来利用此缺陷。成功利用此缺陷会导致以该后台程序自身的权限执行远程代码。
解决方案
Install EMC Replication Manager patch as described on the EMC support website. The following EMC products resolve this issue :- EMC Replication Manager 5.0 SP6 Security Patch
- EMC Replication Manager 5.1 SP6 Security Patch
- EMC Replication Manager 5.2 Security Patch
- EMC Replication Manager 5.2 SP1 Security Patch
另见
https://www.zerodayinitiative.com/advisories/ZDI-09-051/