PT-2013-2724 · Emc · Emc Alphastor
Published
2013-01-31
·
Updated
2014-05-05
·
CVE-2013-0930
CVSS v2.0
7.6
High
| Vector | AV:N/AC:H/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
EMC AlphaStor version 4.0 before build 814
Description
The issue is related to a buffer overflow in the Drive Control Program (DCP) that allows remote attackers to execute arbitrary code. This is achieved via vectors involving a new device name.
Recommendations
For EMC AlphaStor version 4.0 before build 814, update to a version after build 814 to resolve the issue. As a temporary workaround, consider restricting access to the DCP to minimize the risk of exploitation.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Emc Alphastor