Knowledge Base

Support

[Vulnerability Response] Buffer overflow in ServerProtect

Solution IDLast Updated
1034290Date : 2012/01/18 Time: 12:18 AM (PST)


Product/VersionPlatform
ServerProtect for EMC Celerra - 5.58; ServerProtect for Network Appliance Filer - 5.61
Windows - 2000 Professional, 2000 Server, 2003 Datacenter Server, 2003 Enterprise Server, 2003 Standard Server Edition

Problem Description

   

The following have buffer overflow issues which may allow attackers to execute arbitrary codes:

RPC call to function CMON_NetTestConnection (in module stcommon.dll)

RPC call to RPCFN_ActiveRollback (in module stcommon.dll)

RPC call to function ENG_SetRealTimeScanConfigInfo (in module eng50.dll)

RPC call to function ENG_SendEmail (in module eng50.dll)

RPC call to RPCFN_EVENTBACK_Online (in module earthagent.exe)

Function CreateBinding in AgRpcCln.dll
 

This vulnerability affects the following products:
 

ServerProtect for Windows 5.58

ServerProtect for EMC 5.58

ServerProtect for Network Appliance Filer 5.61

ServerProtect for Network Appliance Filer 5.62

Solution

   

To address this issue on ServerProtect for Windows 5.58, download the corresponding Security Patch:
 

Security Patch 2 - Build 1174 (English)
 

SPNT 5.58 Patch 4 (Japanese)
 

Security Patch 2 - Build 1176 (Simplified Chinese)
 

Security Patch 2 - Build 1176 (Traditional Chinese)
 

For ServerProtect for EMC Celerra 5.58, download the Quarterly Patch:
 

SPEMC 5.58 Quarterly Patch 1 (English)
 

For ServerProtect for Network Appliance Filer 5.61, download the Security Patch:
 

Security Patch 1 - Build 1069 (English)
 

For ServerProtect for Network Appliance Filer 5.62, download the Security Patch:
 

Security Patch 1 - Build 1013 (Japanese)


Rate this Solution
Did this article help you?  
 
 Please provide your comments to help us improve this solution.

 
  *This form is an automated system. General questions, technical, sales and product-related issues submitted through this form will not be answered.
 
 

Connect with us on