EMC.AutoStart.Backbone.Service.Code.Execution
Description
This indicates an attack attempt to exploit a remote code-execution vulnerability in EMC AutoStart.
The vulnerability is caused by an error when the Backbone service (ftbackbone.exe) parses a malformed packet. It can be exploited via a crafted TCP packet, leading to remote code execution.
Affected Products
EMC AutoStart 5.3 SP1
EMC AutoStart 5.3
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Upgrade to EMC AutoStart 5.3 SP2, available from the web site.
1. Login to http://www.emc.com/support-training/support/emc-powerlink.htm.
2. Follow the links:
Support > Software Downloads and Licensing > Downloads A-B > AutoStart
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2021-01-11 | 16.995 |