CVE-2013-0944

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2013-0944
The web-based file-restore interface in EMC Avamar Server before 6.1.0 allows remote authenticated users to read arbitrary files via a crafted URL.

3.5 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:M/Au:S/C:P/I:N/A:N

Exploitability : 6.8 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://archives.neohapsis.com/archives/bugtraq/2013-05/0012.html
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:emc:avamar:6.0.2:*:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:6.0.3:*:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:5.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:5.0.0-407:*:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:5.0.4-26:*:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:5.0:sp2:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:6.0:*:*:*:*:*:*:*
cpe:2.3:a:emc:avamar:5.0:sp1:*:*:*:*:*:*
Information

Published : 2013-05-03 04:57

Updated : 2013-05-03 04:57

NVD link : CVE-2013-0944

Mitre link : CVE-2013-0944

JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa
Products Affected

emc

  • avamar