CVE-2013-3270

Published: May 20, 2013Modified: Apr 29, 2026

6.8

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Exploitability: 3.1 / Impact: 10.0

Source: NVD

Description

EMC VNX Control Station before 7.1.70.2 and Celerra Control Station before 6.0.70.1 have an incorrect group ownership for unspecified script files, which allows local users to gain privileges by leveraging nasadmin group membership.

Affected (2)

Products: Emc: Vnx Control Station, Celerra Control Station

Emc

2 products

Vnx Control Station

Celerra Control Station

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Emc Vnx Control Station	Up to 7.1.70.1

Configuration B

1 vulnerable · 5 platform

Vulnerable Software	Affected Versions
Emc Celerra Control Station	Up to 6.0.70.0

Running on/with	Platform Versions
Emc Vnx	Version 5100
Emc Vnx	Version 5300
Emc Vnx	Version 5500
Emc Vnx	Version 5700
Emc Vnx	Version 7500

Related CWEs

CWE-264

References (2)

http://archives.neohapsis.com/archives/bugtraq/2013-05/0063.html

Source: security_alert@emc.com

http://archives.neohapsis.com/archives/bugtraq/2013-05/0063.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.