CVE-2014-0633CVE-2014-0633

Affected configuration(s):

cpe:/a:emc:vplex_geosynchrony:4.0
cpe:/a:emc:vplex_geosynchrony:5.0
cpe:/a:emc:vplex_geosynchrony:5.1
cpe:/a:emc:vplex_geosynchrony:5.2
cpe:/a:emc:vplex_geosynchrony:5.2.1

Date published: 2014-04-01T02:28:18.030-04:00

Date last modified: 2014-04-01T10:13:09.453-04:00

CVSS Score: 7.7

Principal attack vector: ADJACENT_NETWORK

Complexity:  LOW

Reference URL: http://archives.neohapsis.com/archives/bugtraq/2014-03/0157.html

Summary: The GUI in EMC VPLEX GeoSynchrony 4.x and 5.x before 5.3 does not properly validate session-timeout values, which might make it easier for remote attackers to execute arbitrary code by leveraging an unattended workstation.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.