PT-2015-7388 · Emc · Emc Isilon Onefs

Publicado

2015-11-27

Atualizado

2015-11-27

CVE-2015-6848

CVSS v2.0

8.5

Alta

Vetor

AV:N/AC:M/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions EMC Isilon OneFS versions 7.1.x through 7.1.1.5 EMC Isilon OneFS versions 7.2.0.x through 7.2.0.3 EMC Isilon OneFS versions 7.2.1.x through 7.2.1.1

Description The issue allows remote authenticated AD users to obtain root privileges via unspecified vectors when the RFC 2307 feature is configured but SFU is not universally present.

Recommendations For versions 7.1.x through 7.1.1.5, update to version 7.1.1.5 or later. For versions 7.2.0.x through 7.2.0.3, update to version 7.2.0.3 or later. For versions 7.2.1.x through 7.2.1.1, update to version 7.2.1.1 or later.

Correção

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-284

Identificadores relacionados

CVE-2015-6848

Produtos afetados

Emc Isilon Onefs

PT-2015-7388 · Emc · Emc Isilon Onefs

CVE-2015-6848

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2