CVE-2013-0928

EMC AlphaStor <4.0 - RCE

Title source: llm

Description

The NetWorker command processor in rrobotd.exe in the Device Manager in EMC AlphaStor 4.0 before build 800 allows remote attackers to execute arbitrary commands via a DCP "run command" operation.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/34756

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/emc/alphastor_device_manager_exec.rb

View Code ZIP pw:eip

References (4)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2013-01/0078.html

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/34756

[Exploit] http://www.securityfocus.com/bid/57472

[Third Party Advisory] http://www.zerodayinitiative.com/advisories/ZDI-13-033/

Scores

EPSS 0.7867

EPSS Percentile 99.1%

Details

CWE

CWE-78

Status published

Products (1)

emc/alphastor 4.0

Published Jan 21, 2013

Tracked Since Feb 18, 2026