CVE-2013-3270
Summary
| CVE | CVE-2013-3270 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2013-05-20 14:44:00 UTC |
| Updated | 2013-05-20 14:44:00 UTC |
| Description | EMC VNX Control Station before 7.1.70.2 and Celerra Control Station before 6.0.70.1 have an incorrect group ownership for unspecified script files, which allows local users to gain privileges by leveraging nasadmin group membership. |
Risk And Classification
Problem Types: CWE-264
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Emc | Celerra Control Station | All | All | All | All |
| Hardware | Emc | Vnx | 5100 | All | All | All |
| Hardware | Emc | Vnx | 5300 | All | All | All |
| Hardware | Emc | Vnx | 5500 | All | All | All |
| Hardware | Emc | Vnx | 5700 | All | All | All |
| Hardware | Emc | Vnx | 7500 | All | All | All |
| Hardware | Emc | Vnx | 5100 | All | All | All |
| Hardware | Emc | Vnx | 5300 | All | All | All |
| Hardware | Emc | Vnx | 5500 | All | All | All |
| Hardware | Emc | Vnx | 5700 | All | All | All |
| Hardware | Emc | Vnx | 7500 | All | All | All |
| Application | Emc | Vnx Control Station | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 20130516 ESA-2013-041: EMC VNX and Celerra Control Station Elevation of Privilege Vulnerability | BUGTRAQ | archives.neohapsis.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.