CVE-2005-0771 - OpenCVE

VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Symantec Veritas	Backup Exec

Configuration 1 [-]

OR	cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4367:::::::*
	cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4454:::::::*
	cpe:2.3:a:symantec_veritas:backup_exec:9.1_rev.4691:::::::*
	cpe:2.3:a:symantec_veritas:backup_exec:10.0_rev.5484:::::::*

References

Link	Resource
http://secunia.com/advisories/15789	Patch Vendor Advisory
http://securitytracker.com/id?1014273	Patch
http://seer.support.veritas.com/docs/276605.htm	Patch Vendor Advisory
http://seer.support.veritas.com/docs/277429.htm	Patch
http://www.idefense.com/application/poi/display?id=269&type=vulnerabilities&flashstatus=true
http://www.kb.cert.org/vuls/id/584505	Patch Third Party Advisory US Government Resource
http://www.us-cert.gov/cas/techalerts/TA05-180A.html	Patch Third Party Advisory US Government Resource

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2005-06-29T04:00:00

Updated: 2021-06-15T16:39:34

Reserved: 2005-03-18T00:00:00

Link: CVE-2005-0771

JSON object: View

NVD Information

Status : Analyzed

Published: 2005-06-23T04:00:00.000

Modified: 2011-03-08T02:20:33.893

Link: CVE-2005-0771

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-06-23T00:00:00", "descriptions": [{"lang": "en", "value": "VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-06-15T16:39:34", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1014273", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1014273"}, {"name": "VU#584505", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/584505"}, {"name": "20050623 Veritas Backup Exec Server Remote Registry Access Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://www.idefense.com/application/poi/display?id=269&type=vulnerabilities&flashstatus=true"}, {"name": "TA05-180A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA05-180A.html"}, {"name": "15789", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/15789"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://seer.support.veritas.com/docs/277429.htm"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://seer.support.veritas.com/docs/276605.htm"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-0771", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1014273", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1014273"}, {"name": "VU#584505", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/584505"}, {"name": "20050623 Veritas Backup Exec Server Remote Registry Access Vulnerability", "refsource": "IDEFENSE", "url": "http://www.idefense.com/application/poi/display?id=269&type=vulnerabilities&flashstatus=true"}, {"name": "TA05-180A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA05-180A.html"}, {"name": "15789", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/15789"}, {"name": "http://seer.support.veritas.com/docs/277429.htm", "refsource": "CONFIRM", "url": "http://seer.support.veritas.com/docs/277429.htm"}, {"name": "http://seer.support.veritas.com/docs/276605.htm", "refsource": "CONFIRM", "url": "http://seer.support.veritas.com/docs/276605.htm"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-0771", "datePublished": "2005-06-29T04:00:00", "dateReserved": "2005-03-18T00:00:00", "dateUpdated": "2021-06-15T16:39:34", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4367:*:*:*:*:*:*:*", "matchCriteriaId": "7BAD90A9-B5AA-4D6A-9207-2A302BD2774C", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4454:*:*:*:*:*:*:*", "matchCriteriaId": "555367EF-249E-4310-8A06-E59947D33576", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:backup_exec:9.1_rev.4691:*:*:*:*:*:*:*", "matchCriteriaId": "9B969FA8-F5F8-4C34-A99F-1630EAD4EA18", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.0_rev.5484:*:*:*:*:*:*:*", "matchCriteriaId": "15FFFB18-9F1D-4630-BD13-0F34A1D6E5D6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106."}], "id": "CVE-2005-0771", "lastModified": "2011-03-08T02:20:33.893", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-06-23T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/15789"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://securitytracker.com/id?1014273"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://seer.support.veritas.com/docs/276605.htm"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://seer.support.veritas.com/docs/277429.htm"}, {"source": "cve@mitre.org", "url": "http://www.idefense.com/application/poi/display?id=269&type=vulnerabilities&flashstatus=true"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/584505"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA05-180A.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}