Vulnerability-Lookup

CERTA-2011-AVI-509

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité dans EMC Avamar permet de contourner la politique de sécurité.

Description

Cette vulnérabilité permet à un administrateur ou à un opérateur de restorer des données d'un client ou sur un client d'un domaine sur lequel il n'a pas d'autorisation. Cette vulnérabilité permet, également, à un administrateur ou à un opérateur d'un domaine de voir les informations sur les activités de sauvegarde, restauration et réplication associées à un autre domaine.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	EMC Avamar versions 5.0.x
N/A	N/A	EMC Avamar versions 6.0.x
N/A	N/A	EMC Avamar versions 4.x

References

Title

Publication Time

Tags

Bulletin de sécurité EMC ESA-2011-018

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "EMC Avamar versions 5.0.x",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "EMC Avamar versions 6.0.x",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "EMC Avamar versions 4.x",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nCette vuln\u00e9rabilit\u00e9 permet \u00e0 un administrateur ou \u00e0 un op\u00e9rateur de\nrestorer des donn\u00e9es d\u0027un client ou sur un client d\u0027un domaine sur\nlequel il n\u0027a pas d\u0027autorisation. Cette vuln\u00e9rabilit\u00e9 permet, \u00e9galement,\n\u00e0 un administrateur ou \u00e0 un op\u00e9rateur d\u0027un domaine de voir les\ninformations sur les activit\u00e9s de sauvegarde, restauration et\nr\u00e9plication associ\u00e9es \u00e0 un autre domaine.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-1740",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1740"
    }
  ],
  "links": [],
  "reference": "CERTA-2011-AVI-509",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-09-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans \u003cspan class=\"textit\"\u003eEMC Avamar\u003c/span\u003e permet de\ncontourner la politique de s\u00e9curit\u00e9.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans EMC Avamar",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 EMC ESA-2011-018",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2011-09/att-0076/ESA-2011-018.txt"
    }
  ]
}

CVE-2011-1740 (GCVE-0-2011-1740)

Vulnerability from cvelistv5 – Published: 2011-09-17 10:00 – Updated: 2024-08-06 22:37

Summary

EMC Avamar 4.x, 5.0.x, and 6.0.x before 6.0.0-592 allows remote authenticated users to modify client data or obtain sensitive information about product activities by leveraging privileged access to a different domain.

Severity ?

No CVSS data available.

CWE

Assigner

dell

References

URL

Tags

	http://archives.neohapsis.com/archives/bugtraq/20…	mailing-listx_refsource_BUGTRAQ
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/46002	third-party-advisoryx_refsource_SECUNIA
	http://securitytracker.com/id?1026035	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/45988	third-party-advisoryx_refsource_SECUNIA

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T22:37:25.674Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20110912 ESA-2011-018: Domain administration privilege enforcement bypass in EMC Avamar",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2011-09/0076.html"
          },
          {
            "name": "avamar-client-data-sec-bypass(69760)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69760"
          },
          {
            "name": "46002",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/46002"
          },
          {
            "name": "1026035",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1026035"
          },
          {
            "name": "45988",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/45988"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-09-12T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "EMC Avamar 4.x, 5.0.x, and 6.0.x before 6.0.0-592 allows remote authenticated users to modify client data or obtain sensitive information about product activities by leveraging privileged access to a different domain."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-16T14:57:01",
        "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
        "shortName": "dell"
      },
      "references": [
        {
          "name": "20110912 ESA-2011-018: Domain administration privilege enforcement bypass in EMC Avamar",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2011-09/0076.html"
        },
        {
          "name": "avamar-client-data-sec-bypass(69760)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69760"
        },
        {
          "name": "46002",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/46002"
        },
        {
          "name": "1026035",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1026035"
        },
        {
          "name": "45988",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/45988"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security_alert@emc.com",
          "ID": "CVE-2011-1740",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "EMC Avamar 4.x, 5.0.x, and 6.0.x before 6.0.0-592 allows remote authenticated users to modify client data or obtain sensitive information about product activities by leveraging privileged access to a different domain."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20110912 ESA-2011-018: Domain administration privilege enforcement bypass in EMC Avamar",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2011-09/0076.html"
            },
            {
              "name": "avamar-client-data-sec-bypass(69760)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/69760"
            },
            {
              "name": "46002",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/46002"
            },
            {
              "name": "1026035",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1026035"
            },
            {
              "name": "45988",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/45988"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe",
    "assignerShortName": "dell",
    "cveId": "CVE-2011-1740",
    "datePublished": "2011-09-17T10:00:00",
    "dateReserved": "2011-04-19T00:00:00",
    "dateUpdated": "2024-08-06T22:37:25.674Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CERTA-2011-AVI-509

Description

Solution

CVE-2011-1740 (GCVE-0-2011-1740)

Tags

Sightings

Nomenclature