CVE-2014-4634CVE-2014-4634

Affected configuration(s):

cpe:/a:emc:appsync:2.0
cpe:/a:emc:replication_manager:5.0
cpe:/a:emc:replication_manager:5.1
cpe:/a:emc:replication_manager:5.2
cpe:/a:emc:replication_manager:5.3
cpe:/a:emc:replication_manager:5.4
cpe:/a:emc:replication_manager:5.4.3
cpe:/a:emc:replication_manager:5.5
cpe:/a:emc:replication_manager:5.5.1
cpe:/a:emc:replication_manager:5.5.2

Date published: 2014-12-30T10:59:01.483-05:00

Date last modified: 2015-03-24T16:51:08.763-04:00

CVSS Score: 4.6

Principal attack vector: LOCAL

Complexity:  LOW

Reference URL: http://archives.neohapsis.com/archives/bugtraq/2014-12/0170.html

Summary: Unquoted Windows search path vulnerability in EMC Replication Manager through 5.5.2 and AppSync before 2.1.0 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.