CVE-2013-0929

Published: Jan 21, 2013Modified: Apr 29, 2026

7.6

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:C

Exploitability: 4.9 / Impact: 10.0

Source: NVD

Description

Format string vulnerability in the _vsnsprintf function in rrobotd.exe in the Device Manager in EMC AlphaStor 4.0 before build 800 allows remote attackers to execute arbitrary code via format string specifiers in a command.

Affected (1)

Products: Emc: Alphastor

Emc

1 product

Alphastor

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Emc Alphastor	Version 4.0

Related CWEs

CWE-134

Use of Externally-Controlled Format String

The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

References (4)

http://archives.neohapsis.com/archives/bugtraq/2013-01/0078.html

Source: security_alert@emc.com

Broken Link

http://www.securityfocus.com/bid/57472

Source: security_alert@emc.com

Third Party AdvisoryVDB Entry

http://archives.neohapsis.com/archives/bugtraq/2013-01/0078.html

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

http://www.securityfocus.com/bid/57472

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.