EMC Connectrix Manager Converged Network Edition Remote Code Execution Vulnerability
Severity: CRITICAL
CVE Identifier: CVE-2013-6810
Advisory Date: JUL 21, 2015
DESCRIPTION
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005905
Trend Micro Deep Security DPI Rule Name: 1005905 - EMC Connectrix Manager Converged Network Edition Directory Traversal Vulnerability
AFFECTED SOFTWARE AND VERSION
- emc connectrix_manager 11.2.1
- emc connectrix_manager 12.0.1
- emc connectrix_manager 12.0.3