EMC Replication Manager irccd.exe RunProgram Message Handling Arbitrary Command Execution
Critical Nessus Plugin ID 40849
SynopsisArbitrary code can be executed on the remote host.
DescriptionThe remote host is running EMC Replication Manager Client Control Daemon.
The remote version of this software is affected by a remote command execution vulnerability.
An unauthenticated attacker can exploit this flaw by sending a specially crafted packet to the remote host. Successful exploitation would result in remote code execution with the privileges of the daemon itself.
SolutionInstall EMC Replication Manager patch as described on the EMC support website. The following EMC products resolve this issue :
- EMC Replication Manager 5.0 SP6 Security Patch
- EMC Replication Manager 5.1 SP6 Security Patch
- EMC Replication Manager 5.2 Security Patch
- EMC Replication Manager 5.2 SP1 Security Patch