EMC NetWorker Module for Microsoft Applications 2.2.1 / 2.3.x < 2.3 build 122 / 2.4.x < 2.4 build 375 Multiple Vulnerabilities

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an application that is affected by
multiple vulnerabilities.

Description :

The version of EMC NetWorker (formerly Legato NetWorker) Module for
Microsoft Applications installed on the remote host is 2.2.1, 2.3
prior to 2.3 build 122, or 2.4 prior to 2.4 build 375. As such, it
reportedly is affected by multiple vulnerabilities, including
arbitrary code execution and an information disclosure vulnerability
that could allow an attacker the ability to obtain plaintext
credentials.

See also :

http://seclists.org/bugtraq/2012/Oct/67

Solution :

Upgrade to EMC NetWorker Module for Microsoft Applications 2.3 build
122 / 2.4 build 375 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 62946 ()

Bugtraq ID: 55883

CVE ID: CVE-2012-2284
CVE-2012-2290

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now