SB2018020502 - Command execution in EMC RecoverPoint

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018020502

SB2018020502 - Command execution in EMC RecoverPoint

Published: February 5, 2018

Security Bulletin ID SB2018020502
Severity
Low
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Local access
Highest impact Code execution

Breakdown by Severity

Low 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) OS command injection (CVE-ID: CVE-2018-1185)

The vulnerability allows a local high-privileged attacker to execute arbitrary shell commands on the target system.

The vulnerability exists due to an error in lib/rrd.php. A local user with 'admin' privileges can supply specially crafted data via the Admin command line interface (CLI) to escape from the restricted shell to an interactive shell and run arbitrary commands with root privileges.

Successful exploitation of the vulnerability may result in system compromise.


2) Command injection (CVE-ID: CVE-2018-1184)

The vulnerability allows a local high-privileged attacker to execute arbitrary commands on the target system.

The vulnerability exists due to an error in lib/rrd.php. A local user with 'boxmgmt' privileges can supply specially crafted data via the Boxmgmt command line interface (CLI) to run arbitrary commands with root privileges.

Successful exploitation of the vulnerability may result in system compromise.


Remediation

Install update from vendor's website.

References