CVE-2013-0940

Published: May 3, 2013Modified: Apr 29, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

The nsrpush process in the client in EMC NetWorker before 7.6.5.3 and 8.x before 8.0.1.4 sets weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.

Affected (70)

Products: Emc: Networker

Emc

1 product

Networker

Configuration A

62 vulnerable

Vulnerable Software	Affected Versions
Emc Networker	Up to 7.6.5.2
Emc Networker	Version 6.0
Emc Networker	Version 6.1
Emc Networker	Version 7.0
Emc Networker	Version 7.2
Emc Networker	Version 7.3.2
Emc Networker	Version 7.3
Emc Networker	Version 7.4.5.10
Emc Networker	Version 7.4.5.4
Emc Networker	Version 7.4.5.5
Emc Networker	Version 7.4.5.6
Emc Networker	Version 7.4
Emc Networker	Version 7.4 sp1
Emc Networker	Version 7.4 sp2
Emc Networker	Version 7.4 sp3
Emc Networker	Version 7.4 sp4
Emc Networker	Version 7.4 sp5
Emc Networker	Version 7.5.2.0
Emc Networker	Version 7.5.2.1
Emc Networker	Version 7.5.2.2
Emc Networker	Version 7.5.2.3
Emc Networker	Version 7.5.2.4
Emc Networker	Version 7.5.3.1
Emc Networker	Version 7.5.3.2
Emc Networker	Version 7.5.3.3
Emc Networker	Version 7.5.3.4
Emc Networker	Version 7.5.3.5
Emc Networker	Version 7.5.3
Emc Networker	Version 7.5.4.1
Emc Networker	Version 7.5.4.2
Emc Networker	Version 7.5.4.3
Emc Networker	Version 7.5.4.4
Emc Networker	Version 7.5.4.5
Emc Networker	Version 7.5.4.6
Emc Networker	Version 7.5.4.7
Emc Networker	Version 7.5.4
Emc Networker	Version 7.5
Emc Networker	Version 7.5 sp1
Emc Networker	Version 7.5 sp2
Emc Networker	Version 7.5 sp3
Emc Networker	Version 7.6.0.2
Emc Networker	Version 7.6.0.3
Emc Networker	Version 7.6.0.4
Emc Networker	Version 7.6.0.5
Emc Networker	Version 7.6.0.6
Emc Networker	Version 7.6.0.7
Emc Networker	Version 7.6.0.8
Emc Networker	Version 7.6.0.9
Emc Networker	Version 7.6.1.1
Emc Networker	Version 7.6.1.2
Emc Networker	Version 7.6.1.3
Emc Networker	Version 7.6.1.4
Emc Networker	Version 7.6.1.5
Emc Networker	Version 7.6.1
Emc Networker	Version 7.6.3
Emc Networker	Version 7.6.4.1
Emc Networker	Version 7.6.4.2
Emc Networker	Version 7.6.4.3
Emc Networker	Version 7.6.4.4
Emc Networker	Version 7.6.4.5
Emc Networker	Version 7.6.4
Emc Networker	Version 7.6.5

Configuration B

8 vulnerable

Vulnerable Software	Affected Versions
Emc Networker	Version 8.0.0.1
Emc Networker	Version 8.0.0.2
Emc Networker	Version 8.0.0.3
Emc Networker	Version 8.0.0.4
Emc Networker	Version 8.0.0.5
Emc Networker	Version 8.0.0.6
Emc Networker	Version 8.0.1.3
Emc Networker	Version 8.0

Related CWEs

CWE-264

References (2)

http://archives.neohapsis.com/archives/bugtraq/2013-05/0013.html

Source: security_alert@emc.com

http://archives.neohapsis.com/archives/bugtraq/2013-05/0013.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.