Lucene search

K
cve[email protected]CVE-2005-2715
HistoryOct 12, 2005 - 10:02 p.m.

CVE-2005-2715

2005-10-1222:02:00
web.nvd.nist.gov
25
cve-2005-2715
format string vulnerability
java
bpjava-msvc
veritas netbackup
remote code execution
nvd

7.4 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.933 High

EPSS

Percentile

99.1%

Format string vulnerability in the Java user interface service (bpjava-msvc) daemon for VERITAS NetBackup Data and Business Center 4.5FP and 4.5MP, and NetBackup Enterprise/Server/Client 5.0, 5.1, and 6.0, allows remote attackers to execute arbitrary code via the COMMAND_LOGON_TO_MSERVER command.

Affected configurations

NVD
Node
symantec_veritasnetbackup_data_and_business_centerMatch4.5fp
OR
symantec_veritasnetbackup_data_and_business_centerMatch4.5mp
OR
symantec_veritasnetbackup_enterprise_server_clientMatch5.0
OR
symantec_veritasnetbackup_enterprise_server_clientMatch5.1
OR
symantec_veritasnetbackup_enterprise_server_clientMatch6.0

7.4 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.933 High

EPSS

Percentile

99.1%