CVE-2013-0940 | Vulnerability Database | Aqua Security

The nsrpush process in the client in EMC NetWorker before 7.6.5.3 and 8.x before 8.0.1.4 sets weak permissions for unspecified files, which allows local users to gain privileges via unknown vectors.

Affected Software

Name	Vendor	Start Version	End Version
Networker	Emc	*	7.6.5.2 (including)
Networker	Emc	6.0 (including)	6.0 (including)
Networker	Emc	6.1 (including)	6.1 (including)
Networker	Emc	7.0 (including)	7.0 (including)
Networker	Emc	7.2 (including)	7.2 (including)
Networker	Emc	7.3 (including)	7.3 (including)
Networker	Emc	7.3.2 (including)	7.3.2 (including)
Networker	Emc	7.4 (including)	7.4 (including)
Networker	Emc	7.4-sp1 (including)	7.4-sp1 (including)
Networker	Emc	7.4-sp2 (including)	7.4-sp2 (including)
Networker	Emc	7.4-sp3 (including)	7.4-sp3 (including)
Networker	Emc	7.4-sp4 (including)	7.4-sp4 (including)
Networker	Emc	7.4-sp5 (including)	7.4-sp5 (including)
Networker	Emc	7.4.5.4 (including)	7.4.5.4 (including)
Networker	Emc	7.4.5.5 (including)	7.4.5.5 (including)
Networker	Emc	7.4.5.6 (including)	7.4.5.6 (including)
Networker	Emc	7.4.5.10 (including)	7.4.5.10 (including)
Networker	Emc	7.5 (including)	7.5 (including)
Networker	Emc	7.5-sp1 (including)	7.5-sp1 (including)
Networker	Emc	7.5-sp2 (including)	7.5-sp2 (including)
Networker	Emc	7.5-sp3 (including)	7.5-sp3 (including)
Networker	Emc	7.5.2.0 (including)	7.5.2.0 (including)
Networker	Emc	7.5.2.1 (including)	7.5.2.1 (including)
Networker	Emc	7.5.2.2 (including)	7.5.2.2 (including)
Networker	Emc	7.5.2.3 (including)	7.5.2.3 (including)
Networker	Emc	7.5.2.4 (including)	7.5.2.4 (including)
Networker	Emc	7.5.3 (including)	7.5.3 (including)
Networker	Emc	7.5.3.1 (including)	7.5.3.1 (including)
Networker	Emc	7.5.3.2 (including)	7.5.3.2 (including)
Networker	Emc	7.5.3.3 (including)	7.5.3.3 (including)
Networker	Emc	7.5.3.4 (including)	7.5.3.4 (including)
Networker	Emc	7.5.3.5 (including)	7.5.3.5 (including)
Networker	Emc	7.5.4 (including)	7.5.4 (including)
Networker	Emc	7.5.4.1 (including)	7.5.4.1 (including)
Networker	Emc	7.5.4.2 (including)	7.5.4.2 (including)
Networker	Emc	7.5.4.3 (including)	7.5.4.3 (including)
Networker	Emc	7.5.4.4 (including)	7.5.4.4 (including)
Networker	Emc	7.5.4.5 (including)	7.5.4.5 (including)
Networker	Emc	7.5.4.6 (including)	7.5.4.6 (including)
Networker	Emc	7.5.4.7 (including)	7.5.4.7 (including)
Networker	Emc	7.6.0.2 (including)	7.6.0.2 (including)
Networker	Emc	7.6.0.3 (including)	7.6.0.3 (including)
Networker	Emc	7.6.0.4 (including)	7.6.0.4 (including)
Networker	Emc	7.6.0.5 (including)	7.6.0.5 (including)
Networker	Emc	7.6.0.6 (including)	7.6.0.6 (including)
Networker	Emc	7.6.0.7 (including)	7.6.0.7 (including)
Networker	Emc	7.6.0.8 (including)	7.6.0.8 (including)
Networker	Emc	7.6.0.9 (including)	7.6.0.9 (including)
Networker	Emc	7.6.1 (including)	7.6.1 (including)
Networker	Emc	7.6.1.1 (including)	7.6.1.1 (including)
Networker	Emc	7.6.1.2 (including)	7.6.1.2 (including)
Networker	Emc	7.6.1.3 (including)	7.6.1.3 (including)
Networker	Emc	7.6.1.4 (including)	7.6.1.4 (including)
Networker	Emc	7.6.1.5 (including)	7.6.1.5 (including)
Networker	Emc	7.6.3 (including)	7.6.3 (including)
Networker	Emc	7.6.4 (including)	7.6.4 (including)
Networker	Emc	7.6.4.1 (including)	7.6.4.1 (including)
Networker	Emc	7.6.4.2 (including)	7.6.4.2 (including)
Networker	Emc	7.6.4.3 (including)	7.6.4.3 (including)
Networker	Emc	7.6.4.4 (including)	7.6.4.4 (including)
Networker	Emc	7.6.4.5 (including)	7.6.4.5 (including)
Networker	Emc	7.6.5 (including)	7.6.5 (including)

References

http://archives.neohapsis.com/archives/bugtraq/2013-05/0013.html

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-0940
CWE	https://cwe.mitre.org/data/definitions/264.html