Vulnerability Description
Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specifiers in a message.
CVSS Score
9.3
HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emc | Networker | 7.6.3 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2012-08/0219.html
- http://www.securityfocus.com/bid/55330
- http://www.securitytracker.com/id?1027459
- http://archives.neohapsis.com/archives/bugtraq/2012-08/0219.html
- http://www.securityfocus.com/bid/55330
- http://www.securitytracker.com/id?1027459
FAQ
What is CVE-2012-2288?
CVE-2012-2288 is a vulnerability with a CVSS score of 9.3 (HIGH). Format string vulnerability in the nsrd RPC service in EMC NetWorker 7.6.3 and 7.6.4 before 7.6.4.1, and 8.0 before 8.0.0.1, allows remote attackers to execute arbitrary code via format string specifi...
How severe is CVE-2012-2288?
CVE-2012-2288 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-2288?
Check the references section above for vendor advisories and patch information. Affected products include: Emc Networker.