• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: EMC Legato Networker Multiple Remote Vulnerabilities

Severity: CRITICAL

Description:

Legato NetWorker is a server package designed to help share data, media, and backup processes across a heterogeneous network. The Legato NetWorker server will run on a number of Unix variants and on Microsoft Windows NT/2000 systems.

EMC Legato NetWorker is affected by multiple remote vulnerabilities. A denial-of-service issue and two remote code-execution issues have been identified.

One issue is reported to be caused by insufficient sanity-checking in authentication parameters.

The other two issues arise from heap-overflow conditions and affect the 'nsrd.exe' and 'nsrexecd.exe' processes:

- 'nsrd.exe' process -- malformed RPC requests to RPC program number 390109 can trigger an overflow.

- 'nsrexecd.exe' process -- malformed RPC requests to RPC program number 390113 can trigger an overflow.

These processes are installed on both clients and servers.

Version 7.2.1 of Legato NetWorker is vulnerable to these issues; prior versions may also be affected.

Affected Products:

• EMC Legato Networker 6.0.0 x
• EMC Legato Networker 7.1.3
• EMC Legato Networker 7.2.0
• EMC Legato Networker 7.2.0 build 172
• EMC Legato Networker 7.2.1
• Sun Solstice Backup Software 6.0.0
• Sun Solstice Backup Software 6.0.0 _x86
• Sun Solstice Backup Software 6.1.0
• Sun Solstice Backup Software 6.1.0 _x86
• Sun StorEdge Enterprise Backup Software 7.0.0
• Sun StorEdge Enterprise Backup Software 7.0.0 _x86
• Sun StorEdge Enterprise Backup Software 7.1.0
• Sun StorEdge Enterprise Backup Software 7.1.0 L
• Sun StorEdge Enterprise Backup Software 7.1.0 _x86
• Sun StorEdge Enterprise Backup Software 7.2.0
• Sun StorEdge Enterprise Backup Software 7.2.0 L
• Sun StorEdge Enterprise Backup Software 7.2.0 _x86

References:

• EMC: EMC Legato Networker Product Alert
• EMC: EMC Legato Networker Product Alert - January 16, 2006
• EMC: EMC Legato Networker Product Page
• Sun: Sun Alert ID: 101886
• Sun: Sun Alert ID: 102148
• US-CERT: VU#407641 - EMC Legato NetWorker database services use insufficient authenticati
• US-CERT: VU#606857 - EMC Legato NetWorker uses weak AUTH_UNIX authentication
• US-CERT: VU#801089 - EMC Legato NetWorker portmapper allows remote calls to "pmap_set" an
• iDefense: EMC Legato Networker nsrd.exe DoS Vulnerability
• iDefense: EMC Legato Networker nsrd.exe Heap Overflow Vulnerability
• iDefense: EMC Legato Networker nsrexecd.exe Heap Overflow Vulnerability

Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.