Fortinet Discovers EMC AppSync Host Plug-in Remote Denial of Service Vulnerability
Fortinet's FortiGuard Labs has discovered a denial of service (DoS) vulnerability in EMC AppSync Host Plug-in.
EMC AppSync is a software that enables Integrated Copy Data Management (iCDM) with Dell EMC's primary storage systems. AppSync simplifies, orchestrates, and automates the process of generating and consuming copies of production data.
EMC AppSync Host Plug-in (AppSync agent) on Windows platforms is vulnerable when processing a large amount of network packets. An unauthenticated remote attacker can send specifically crafted packets to the vulnerable service (port 10004) and cause denial of service situation.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Sep 29, 2017
Users should apply the solution provided by EMC.
Fortinet reported the vulnerability to EMC on June 27, 2017.
EMC confirmed the vulnerability on August 31, 2017.
EMC released patch for it on September 26, 2017.
This vulnerability was discovered by Honggang Ren of Fortinet's FortiGuard Labs.