Vulnerability Details : CVE-2011-0647
Public exploit exists!
The irccd.exe service in EMC Replication Manager Client before 5.3 and NetWorker Module for Microsoft Applications 2.1.x and 2.2.x allows remote attackers to execute arbitrary commands via the RunProgram function to TCP port 6542.
Vulnerability category: Input validation
Exploit prediction scoring system (EPSS) score for CVE-2011-0647
96.43%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 100 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2011-0647
-
EMC Replication Manager Command Execution
Disclosure Date: 2011-02-07First seen: 2020-04-26exploit/windows/emc/replication_manager_execThis module exploits a remote command-injection vulnerability in EMC Replication Manager client (irccd.exe). By sending a specially crafted message invoking RunProgram function an attacker may be able to execute arbitrary commands with SYSTEM privileges. Affected pro
CVSS scores for CVE-2011-0647
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2011-0647
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-0647
-
http://www.zerodayinitiative.com/advisories/ZDI-11-061/
ZDI-11-061 | Zero Day Initiative
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/65205
EMC Replication Manager client irccd.exe code execution CVE-2011-0647 Vulnerability Report
-
http://www.securityfocus.com/bid/46235
EMC Replication Manager Client Control Service Remote Code Execution Vulnerability
-
http://www.vupen.com/english/advisories/2011/0304
Webmail | OVH- OVHVendor Advisory
-
http://www.securityfocus.com/archive/1/516282/100/0/threaded
SecurityFocus
-
http://www.securityfocus.com/archive/1/516260
SecurityFocus
Products affected by CVE-2011-0647
- cpe:2.3:a:emc:networker_module:2.1:-:microsoft_applications:*:*:*:*:*
- cpe:2.3:a:emc:networker_module:2.2:-:microsoft_applications:*:*:*:*:*
- cpe:2.3:a:emc:replication_manager:*:*:client:*:*:*:*:*
- cpe:2.3:a:emc:replication_manager:2.0:*:client:*:*:*:*:*
- cpe:2.3:a:emc:replication_manager:5.2.2:*:client:*:*:*:*:*
- cpe:2.3:a:emc:replication_manager:5.2:*:client:*:*:*:*:*