Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
librpc.dll in nsrexecd in EMC NetWorker before 7.5 SP4, 7.5.3.x before 7.5.3.5, and 7.6.x before 7.6.1.2 does not properly mitigate the possibility of a spoofed localhost source IP address, which allows remote attackers to (1) register or (2) unregister RPC services, and consequently cause a denial of service or obtain sensitive information from interprocess communication, via crafted UDP packets containing service commands.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
EMC NetWorker 'librpc.dll'动态库信息泄漏漏洞
Vulnerability Description
EMC NetWorker是美国易安信(EMC)公司的一套统一备份和恢复软件。该软件提供备份与恢复、消除重复数据、备份报告等功能。 EMC NetWorker 7.5 SP4之前版本,7.5.3.5之前的7.5.3.x版本,以及7.6.1.2之前的7.6.x版本中的nsrexecd中的librpc.dll没有正确减轻欺骗本地主机源IP地址的可能性。远程攻击者可以借助包含服务命令的特制UDP包(1)注册或者(2)不注册RPC服务,并导致拒绝服务或者从内部进程通信中获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A