VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write arbitrary files with the backup server.
References
Link | Resource |
---|---|
http://secunia.com/advisories/16403 | Patch Vendor Advisory |
http://securityresponse.symantec.com/avcenter/security/Content/2005.08.12b.html | Patch Vendor Advisory |
http://securitytracker.com/id?1014662 | Exploit Patch Vendor Advisory |
http://www.kb.cert.org/vuls/id/378957 | Patch Third Party Advisory US Government Resource |
http://www.securityfocus.com/bid/14551 | Exploit |
http://www.us-cert.gov/cas/techalerts/TA05-224A.html | Third Party Advisory US Government Resource |
http://www.vupen.com/english/advisories/2005/1387 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/21793 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-08-17T04:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2005-08-17T00:00:00
Link: CVE-2005-2611
JSON object: View
NVD Information
Status : Modified
Published: 2005-08-17T04:00:00.000
Modified: 2017-07-11T01:32:54.737
Link: CVE-2005-2611
JSON object: View
Redhat Information
No data.
CWE