EMC Control Center SST_SENDFILE Remote File Retrieval Vulnerability

CVE ID

CVE-2008-5420

Affected Vendors

EMC

Affected Products

Control Center

Vulnerability Details

This vulnerability allows remote attackers to retrieve arbitrary files on systems with vulnerable installations of EMC Control Center. Authentication is not required to exploit this vulnerability.

The specific flaw exists in the Master Agent service (msragent.exe) which listens by default on TCP port 10444. While processing SST_SENDFILE requests the service does not validate the requestor allowing any remote attacker to download arbitrary files.

Vendor Response

Customers should upgrade to version 6.1 which contains the fix.

Disclosure Timeline

2008-11-10 - Vulnerability reported to vendor
2008-11-20 - Coordinated public release of advisory

Credit

Anonymous

Published Advisories

ZDI-10-169: Novell

• published 2010-09-01

ZDI-10-168: Apple

• published 2010-08-31

ZDI-10-167: RealNetworks

• published 2010-08-26

ZDI-10-166: RealNetworks

• published 2010-08-26

ZDI-10-165: Trend Micro

• published 2010-08-25

Upcoming Advisories

Novell

• reported 2010-08-23, 8 days ago

Mozilla Firefox

• reported 2010-08-12, 19 days ago

CA

• reported 2010-08-12, 19 days ago

Apple

• reported 2010-08-12, 19 days ago

Symantec

• reported 2010-07-20, 42 days ago

Recent Press

How Microsoft ranks with the most tardy bug ...

• published 2010-08-05, Network World

HP TippingPoint gives deadline to vendors

• published 2010-08-05, International Business Times

TippingPoint sets six-month deadline for flaw fixes

• published 2010-08-04, V3

HP's Zero Day Initiative Gives Vendors Patching Deadline

• published 2010-08-04, CRN

Researchers Throw Down Vulnerability-Disclosure Gauntlet

• published 2010-08-04, DarkReading