https://live.paloaltonetworks.com/t5/general-topics/cve-2012-4607/m-p/3752#M2758 <HTML><HEAD></HEAD><BODY><P>No hits when I searched for that CVE in threat vault <A class="active_link" href="https://threatvault.paloaltonetworks.com/" title="https://threatvault.paloaltonetworks.com/">https://threatvault.paloaltonetworks.com/</A></P><P></P><P>However searching for networker gave me this:</P><P></P><P><A class="active_link" href="https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529" title="https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529">https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529</A></P><P></P><TABLE id="ListTable"><TBODY><TR><TD><P><A href="https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529" target="_blank"><IMG alt="Detail" class="jiveImage" src="https://ip1.i.lithium.com/5bc835567ce40c0c6f9341d198663932e6a30806/68747470733a2f2f7468726561747661756c742e70616c6f616c746f6e6574776f726b732e636f6d2f436f6e74656e742f496d616765732f44657461696c49636f6e2e676966" title="Detail" /></A></P><P>31529</P></TD><TD> EMC Legato NetWorker Remote Exec Service Buffer Overflow </TD><TD> high </TD><TD> CVE-2007-3618 </TD></TR></TBODY></TABLE><P></P><H1>EMC Legato NetWorker Remote Exec Service Buffer Overflow</H1><H2>Overview</H2><P>&nbsp;&nbsp;&nbsp; </P><TABLE><TBODY><TR class="spaceunder" style="background: none repeat scroll 0% 0% #d6e1e7;"><TD> Attack Name </TD><TD class="detail-field"> EMC Legato NetWorker Remote Exec Service Buffer Overflow </TD></TR><TR class="spaceunder"><TD> Description </TD><TD> There exists a buffer overflow vulnerability in EMC legato NetWorker product. The flaw is due to improper boundary protection when processing RPC requests. A remote unauthenticated attacker can leverage this vulnerability by sending crafted RPC message to the target host, potentially inject and execute arbitrary code with System level privileges. </TD></TR><TR class="spaceunder" style="background: none repeat scroll 0% 0% #d6e1e7;"><TD> Threat ID </TD><TD> 31529 </TD></TR><TR class="spaceunder"><TD> References </TD><TD> <A href="http://secunia.com/advisories/26517" target="_blank">http://secunia.com/advisories/26517</A><BR /><A href="http://www.zerodayinitiative.com/advisories/ZDI-07-049.html" target="_blank">http://www.zerodayinitiative.com/advisories/ZDI-07-049.html</A></TD></TR><TR class="spaceunder" style="background: none repeat scroll 0% 0% #d6e1e7;"><TD> Severity </TD><TD> high </TD></TR><TR class="spaceunder"><TD> Category </TD><TD> overflow </TD></TR></TBODY></TABLE></BODY></HTML> Thu, 24 Jan 2013 09:50:47 GMT mikand 2013-01-24T09:50:47Z https://live.paloaltonetworks.com/t5/general-topics/cve-2012-4607/m-p/3751#M2757 <HTML><HEAD></HEAD><BODY><P>Does the Palo firewall (version 4.1.10) with threat update version 351 block vulnerability CVE-2012-4607</P><P></P><P><SPAN style="color: #000154; font-family: Verdana, Geneva, Arial, helvetica, sans-serif; font-size: 14px; background-color: #f6f0d0;">"Buffer overflow in nsrindexd in EMC NetWorker 7.5.x and 7.6.x before 7.6.5, and 8.x before 8.0.0.6, allows remote attackers to execute arbitrary code via crafted SunRPC data.</SPAN>"</P></BODY></HTML> Thu, 24 Jan 2013 09:04:34 GMT https://live.paloaltonetworks.com/t5/general-topics/cve-2012-4607/m-p/3751#M2757 ERIKS 2013-01-24T09:04:34Z https://live.paloaltonetworks.com/t5/general-topics/cve-2012-4607/m-p/3752#M2758 <HTML><HEAD></HEAD><BODY><P>No hits when I searched for that CVE in threat vault <A class="active_link" href="https://threatvault.paloaltonetworks.com/" title="https://threatvault.paloaltonetworks.com/">https://threatvault.paloaltonetworks.com/</A></P><P></P><P>However searching for networker gave me this:</P><P></P><P><A class="active_link" href="https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529" title="https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529">https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529</A></P><P></P><TABLE id="ListTable"><TBODY><TR><TD><P><A href="https://threatvault.paloaltonetworks.com/Home/ThreatDetail/31529" target="_blank"><IMG alt="Detail" class="jiveImage" src="https://ip1.i.lithium.com/5bc835567ce40c0c6f9341d198663932e6a30806/68747470733a2f2f7468726561747661756c742e70616c6f616c746f6e6574776f726b732e636f6d2f436f6e74656e742f496d616765732f44657461696c49636f6e2e676966" title="Detail" /></A></P><P>31529</P></TD><TD> EMC Legato NetWorker Remote Exec Service Buffer Overflow </TD><TD> high </TD><TD> CVE-2007-3618 </TD></TR></TBODY></TABLE><P></P><H1>EMC Legato NetWorker Remote Exec Service Buffer Overflow</H1><H2>Overview</H2><P>&nbsp;&nbsp;&nbsp; </P><TABLE><TBODY><TR class="spaceunder" style="background: none repeat scroll 0% 0% #d6e1e7;"><TD> Attack Name </TD><TD class="detail-field"> EMC Legato NetWorker Remote Exec Service Buffer Overflow </TD></TR><TR class="spaceunder"><TD> Description </TD><TD> There exists a buffer overflow vulnerability in EMC legato NetWorker product. The flaw is due to improper boundary protection when processing RPC requests. A remote unauthenticated attacker can leverage this vulnerability by sending crafted RPC message to the target host, potentially inject and execute arbitrary code with System level privileges. </TD></TR><TR class="spaceunder" style="background: none repeat scroll 0% 0% #d6e1e7;"><TD> Threat ID </TD><TD> 31529 </TD></TR><TR class="spaceunder"><TD> References </TD><TD> <A href="http://secunia.com/advisories/26517" target="_blank">http://secunia.com/advisories/26517</A><BR /><A href="http://www.zerodayinitiative.com/advisories/ZDI-07-049.html" target="_blank">http://www.zerodayinitiative.com/advisories/ZDI-07-049.html</A></TD></TR><TR class="spaceunder" style="background: none repeat scroll 0% 0% #d6e1e7;"><TD> Severity </TD><TD> high </TD></TR><TR class="spaceunder"><TD> Category </TD><TD> overflow </TD></TR></TBODY></TABLE></BODY></HTML> Thu, 24 Jan 2013 09:50:47 GMT https://live.paloaltonetworks.com/t5/general-topics/cve-2012-4607/m-p/3752#M2758 mikand 2013-01-24T09:50:47Z