• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

EMC ControlCenter Manager for SAN 'msragent.exe' Remote Information Disclosure Vulnerability

EMC ControlCenter Manager for SAN is prone to a remote information-disclosure vulnerability caused by an origin-validation error.

A remote attacker may exploit this issue to access arbitrary files within the context of the vulnerable application, possibly obtaining sensitive information. This may aid in further attacks.

This issue resides in ControlCenter Manager for SAN 5.2 SP 5 and 6.0. Other versions may also be affected.