Lucene search

[email protected]CVE-2016-0917

HistorySep 21, 2016 - 2:59 a.m.

CVE-2016-0917

2016-09-2102:59:05

CWE-264

[email protected]

web.nvd.nist.gov

cve-2016-0917

smb service

emc vnxe

vnx1

vnx2

celerra

ntlm challenge-response

arbitrary code

remote attackers

authentication requests

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.962 High

EPSS

Percentile

99.5%

JSON

The SMB service in EMC VNXe (VNXe3200 Operating Environment prior to 3.1.5.8711957 and VNXe3100/3150/3300 Operating Environment prior to 2.4.4.22638), VNX1 File OE before 7.1.80.3, VNX2 File OE before 8.1.9.155, and Celerra (all supported versions) does not prevent duplicate NTLM challenge-response nonces, which makes it easier for remote attackers to execute arbitrary code, or read or write to files, via a series of authentication requests, a related issue to CVE-2010-0231.

Affected configurations

NVD

Node

emcvnx1_oe_firmwareMatch-

emcvnx2_oe_firmwareMatch-

emcvnxe_oe_firmwareMatch-

AND

emcvnx5200Match-

emcvnx5400Match-

emcvnx5600Match-

emcvnx5800Match-

emcvnxe1600Match-

emcvnxe3100Match-

emcvnxe3150Match-

emcvnxe3200Match-

emcvnxe3200_hybridMatch-

emcvnxe3300Match-

CPENameOperatorVersion
emc:vnx1_oe_firmwareemc vnx1 oe firmwareeq-
emc:vnx2_oe_firmwareemc vnx2 oe firmwareeq-
emc:vnxe_oe_firmwareemc vnxe oe firmwareeq-