Unrated severityNVD Advisory· Published Jan 15, 2020· Updated Aug 7, 2024

CVE-2009-1120

Description

EMC RepliStor Server Service before ESA-09-003 has a DoASOCommand Remote Code Execution Vulnerability. The flaw exists within the DoRcvRpcCall RPC function -exposed via the rep_srv.exe process- where the vulnerability is caused by an error when the rep_srv.exe handles a specially crafted packet sent by an unauthenticated attacker.

Affected products

EMC Corporation/Replistorv5
Range: before ESA-09-003

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.zerodayinitiative.com/advisories/ZDI-09-068/mitrex_refsource_MISC
fortiguard.com/encyclopedia/ips/17967/emc-replistor-server-service-doasocommand-code-executionmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000