CVE-2012-4607

Name of the Vulnerable Software and Affected Versions EMC NetWorker versions 7.5.x through 7.6.4 EMC NetWorker versions 8.x prior to 8.0.0.6

Description The issue is related to a buffer overflow in the nsrindexd component, allowing remote attackers to execute arbitrary code via crafted SunRPC data. This can be exploited through the nsrindexd service, potentially leading to remote code execution. The nsrck.exe component is also mentioned as vulnerable to remote code execution, but details about its exploitation are not provided.

Recommendations For EMC NetWorker versions 7.5.x through 7.6.4, update to version 7.6.5 or later. For EMC NetWorker versions 8.x prior to 8.0.0.6, update to version 8.0.0.6 or later. As a temporary workaround, consider restricting access to the nsrindexd service and the nsrck.exe component to minimize the risk of exploitation.