EMC VNX Control Station before 7.1.70.2 and Celerra Control Station before 6.0.70.1 have an incorrect group ownership for unspecified script files, which allows local users to gain privileges by leveraging nasadmin group membership.
2013-05-20T14:44:35.240
2025-04-11T00:51:21.963
Deferred
CVSSv2: 6.8 (MEDIUM)
AV:L/AC:L/Au:S/C:C/I:C/A:C
3.1
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | emc | vnx_control_station | ≤ 7.1.70.1 | Yes |
Hardware | emc | vnx | 5100 | No |
Hardware | emc | vnx | 5300 | No |
Hardware | emc | vnx | 5500 | No |
Hardware | emc | vnx | 5700 | No |
Hardware | emc | vnx | 7500 | No |
Application | emc | celerra_control_station | ≤ 6.0.70.0 | Yes |
Hardware | emc | vnx | 5100 | No |
Hardware | emc | vnx | 5300 | No |
Hardware | emc | vnx | 5500 | No |
Hardware | emc | vnx | 5700 | No |
Hardware | emc | vnx | 7500 | No |