Description
EMC NetWorker 7.5.x before 7.5.4.3 and 7.6.x before 7.6.1.5, when the client push feature is enabled, uses weak permissions for an unspecified file, which allows local users to gain privileges via unknown vectors.
References (6)
Core 6
Core References
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2011/1025
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1025383
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/8214
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/517532/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/47410
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/44237
Scores
EPSS
0.0004
EPSS Percentile
14.0%
Details
CWE
CWE-264
Status
published
Products (28)
emc/networker
7.5.2.0
emc/networker
7.5.2.1
emc/networker
7.5.2.2
emc/networker
7.5.2.3
emc/networker
7.5.2.4
emc/networker
7.5.3
emc/networker
7.5.3.1
emc/networker
7.5.3.2
emc/networker
7.5.3.3
emc/networker
7.5.3.4
... and 18 more
Published
Apr 22, 2011
Tracked Since
Feb 18, 2026