APP: EMC AlphaStore Mutiple Parameter Parsing Command Injecton

This signature detects attempts to exploit a known vulnerability against EMC AlphaStore. Attackers can inject and execute arbitrary commands on the targeted system.

Extended Description

The NetWorker command processor in rrobotd.exe in the Device Manager in EMC AlphaStor 4.0 before build 800 allows remote attackers to execute arbitrary commands via a DCP "run command" operation.

Affected Products

Emc alphastor

References

CVE: CVE-2013-0928

Short Name
APP:EMC-ALPHASTORE-CMDEXEC
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
AlphaStore CVE-2013-0928 Command EMC Injecton Mutiple Parameter Parsing
Release Date
11/26/2013
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3761
Port
TCP/3000
False Positive
Unknown
Vendors

Emc

CVSS Score

9.3

Found a potential security threat?