DOS: Dell EMC NetWorker Denial of Service

This signature detects attempts to exploit a known vulnerability against Dell EMC NetWorker. A successful attack can lead to Denial of Service condition.

Extended Description

In Dell EMC NetWorker versions prior to 9.2.1.1, versions prior to 9.1.1.6, 9.0.x, and versions prior to 8.2.4.11, the 'nsrd' daemon causes a buffer overflow condition when handling certain messages. A remote unauthenticated attacker could potentially exploit this vulnerability to cause a denial of service to the users of NetWorker systems.

Affected Products

Dell emc_networker

References

CVE: CVE-2018-1218

Short Name
DOS:APPLICATION:DELL-NETW-DOS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
DOS
Keywords
CVE-2018-1218 Dell Denial EMC NetWorker Service of
Release Date
10/15/2019
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3415
Port
TCP/7000-7999,8001-10000
False Positive
Unknown
Vendors

Dell

CVSS Score

5.0

Found a potential security threat?