EMC Connectrix Manager Converged Network Edition Remote Code Execution Vulnerability
Publish Date: 21 de lipca de 2015
Severity: : Critical
CVE Kennungen: : CVE-2013-6810
Advisory Date: 21 de lipca de 2015
DESCRIPTION
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1005905
Trend Micro Deep Security DPI Rule Name: 1005905 - EMC Connectrix Manager Converged Network Edition Directory Traversal Vulnerability
AFFECTED SOFTWARE AND VERSION:
- emc connectrix_manager 11.2.1
- emc connectrix_manager 12.0.1
- emc connectrix_manager 12.0.3