Privilege Escalation via Incorrect Group Ownership in EMC VNX and Celerra Control Stations

Privilege Escalation via Incorrect Group Ownership in EMC VNX and Celerra Control Stations

CVE-2013-3270 · MEDIUM Severity

AV:L/AC:L/AU:S/C:C/I:C/A:C

EMC VNX Control Station before 7.1.70.2 and Celerra Control Station before 6.0.70.1 have an incorrect group ownership for unspecified script files, which allows local users to gain privileges by leveraging nasadmin group membership.

Learn more about our User Device Pen Test.