CVE-2008-5420 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2008-5420
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-5420

Description: The SAN Manager Master Agent service (aka msragent.exe) in EMC Control Center before 6.1 does not properly authenticate SST_SENDFILE requests, which allows remote attackers to read arbitrary files.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/46753 ST 1021263 SREASON http://securityreason.com/securityalert/4709 SAID Secunia Advisory: SA32801 OSVDB 50032 MISC http://www.zerodayinitiative.com/advisories/ZDI-08-076/ BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/498556/100/0/threaded BID 32392

Return to the previous page.