CVE-2017-10955

Name of the Vulnerable Software and Affected Versions EMC Data Protection Advisor version 6.3.0

Description This issue allows remote attackers to execute arbitrary code on vulnerable installations. Authentication is required to exploit this issue. The specific flaw exists within the EMC DPA Application service, which listens on TCP port 9002 by default. When parsing the preScript parameter, the process does not properly validate a user-supplied string before using it to execute a system call. An attacker can leverage this issue to execute arbitrary code under the context of SYSTEM.

Recommendations For EMC Data Protection Advisor version 6.3.0, consider disabling the EMC DPA Application service or restricting access to TCP port 9002 until a patch is available. As a temporary workaround, avoid using the preScript parameter in the affected service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.