7.3 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.973 High
EPSS
Percentile
99.9%
VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write arbitrary files with the backup server.
secunia.com/advisories/16403
securityresponse.symantec.com/avcenter/security/Content/2005.08.12b.html
securitytracker.com/id?1014662
www.kb.cert.org/vuls/id/378957
www.securityfocus.com/bid/14551
www.us-cert.gov/cas/techalerts/TA05-224A.html
www.vupen.com/english/advisories/2005/1387
exchange.xforce.ibmcloud.com/vulnerabilities/21793