EMC Connectrix Manager Converged Network Edition Remote Code Execution Vulnerability
Publish Date: 21 juillet 2015
Gravité: : Critique
Identifiant(s) CVE: : CVE-2013-6810
Date du conseil: 21 juillet 2015
Description
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1005905
Trend Micro Deep Security DPI Rule Name: 1005905 - EMC Connectrix Manager Converged Network Edition Directory Traversal Vulnerability
Affected software and version:
- emc connectrix_manager 11.2.1
- emc connectrix_manager 12.0.1
- emc connectrix_manager 12.0.3