Vulnerability Details : CVE-2011-1420
EMC Data Protection Advisor Collector 5.7 and 5.7.1 on Solaris SPARC platforms uses weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.
Products affected by CVE-2011-1420
- cpe:2.3:o:oracle:solaris_sparc:*:*:*:*:*:*:*:*
- cpe:2.3:a:emc:data_protection_advisor_collector:5.7:*:*:*:*:*:*:*
- cpe:2.3:a:emc:data_protection_advisor_collector:5.7.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-1420
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 25 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-1420
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2011-1420
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-1420
-
http://www.securityfocus.com/archive/1/517179/100/0/threaded
SecurityFocus
-
http://securityreason.com/securityalert/8169
EMC Data Protection Advisor Collector arbitrary code execution - CXSecurity.com
-
http://www.securityfocus.com/bid/47036
EMC Data Protection Advisor Collector for Solaris SPARC Insecure File Permissions Vulnerability
-
http://securitytracker.com/id?1025253
EMC Data Protection Advisor Collector for Solaris File Permission Error Lets Remote Authenticated Users Gain Elevated Privileges - SecurityTracker
-
http://www.vupen.com/english/advisories/2011/0783
Webmail | OVH- OVH
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/66323
EMC Data Protection Advisor Collector permissions privilege escalation CVE-2011-1420 Vulnerability Report
Jump to