OSVDB ID: 50032

Title: EMC Control Center SAN Manager SST_SENDFILE Request Arbitrary File Access

Info

Disclosure

Nov 20, 2008

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Classification

Location: Remote / Network Access
Solution: Upgrade
Exploit: Exploit Private
Disclosure: Vendor Verified

Solution

Upgrade to version 5.2 SP5 Patch 4433, 6.0 Patch 4434 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Unknown or Incomplete

References

Security Tracker: 1021263
CVE ID: 2008-5420 (see also: NVD)
Bugtraq ID: 32392
Secunia Advisory ID: 32801
ISS X-Force ID: 46753
Related OSVDB ID: 50031
VUPEN Advisory: ADV-2008-3220
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2008-11/0159.html [ Link is 404 ]
Other Advisory URL: http://www.zerodayinitiative.com/advisories/ZDI-08-076

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/50032