Description
The EMC Celerra Network Attached Storage (NAS) appliance accepts external network traffic to IP addresses intended for an intranet network within the appliance, which allows remote attackers to read, create, or modify arbitrary files in the user data directory via NFS requests.
Exploits (1)
exploitdb
WRITEUP
by Trustwave's SpiderLabs · textremotehardware
https://www.exploit-db.com/exploits/14536
References (9)
Core 9
Core References
Various Sources x_refsource_misc
https://www.trustwave.com/spiderlabs/advisories/TWSL2010-003.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1024271
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2337
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/512823/100/0/threaded
Third Party Advisory mailing-list
x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2010-08/0018.html
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/14536
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/60885
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/42134
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/513564/100/0/threaded
Scores
EPSS
0.0990
EPSS Percentile
93.0%
Details
CWE
CWE-264
Status
published
Products (1)
emc/celerra_network_attached_storage
Published
Aug 05, 2010
Tracked Since
Feb 18, 2026