CVE-2009-0651

2009-02-20T18:30:00

Description

Unspecified vulnerability in the Veritas network daemon (aka vnetd) in Symantec Veritas NetBackup Server / Enterprise Server 5.x, 6.0 before MP7 SP1, and 6.5 before 6.5.3.1 allows remote attackers to execute arbitrary code via unknown vectors related to "initial communications setup."

Affected Software

CPE Name	Name	Version
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server \/enterprise server	5.1
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server \/enterprise server	5.1mp7
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server \/enterprise server	6.5
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server \/enterprise server	6.5.2
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server \/enterprise server	6.0
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server \/enterprise server	6.0mp7

{"id": "CVE-2009-0651", "vendorId": null, "type": "cve", "bulletinFamily": "NVD", "title": "CVE-2009-0651", "description": "Unspecified vulnerability in the Veritas network daemon (aka vnetd) in Symantec Veritas NetBackup Server / Enterprise Server 5.x, 6.0 before MP7 SP1, and 6.5 before 6.5.3.1 allows remote attackers to execute arbitrary code via unknown vectors related to \"initial communications setup.\"", "published": "2009-02-20T18:30:00", "modified": "2017-08-17T01:29:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "SINGLE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 6.5}, "severity": "MEDIUM", "exploitabilityScore": 8.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-0651", "reporter": "cve@mitre.org", "references": ["http://seer.entsupport.symantec.com/docs/317828.htm", "http://secunia.com/advisories/33953", "http://www.securityfocus.com/bid/33772", "http://www.securitytracker.com/id?1021734", "http://securityresponse.symantec.com/avcenter/security/Content/2009.02.17.html", "http://osvdb.org/52269", "http://sunsolve.sun.com/search/document.do?assetkey=1-66-253287-1", "http://www.vupen.com/english/advisories/2009/1097", "http://www.vupen.com/english/advisories/2009/0461", "https://exchange.xforce.ibmcloud.com/vulnerabilities/48795"], "cvelist": ["CVE-2009-0651"], "immutableFields": [], "lastseen": "2022-03-23T21:21:53", "viewCount": 14, "enchantments": {"dependencies": {"references": [{"type": "nessus", "idList": ["SOLARIS10_136859.NASL", "SOLARIS10_136860.NASL", "SOLARIS10_136863.NASL", "SOLARIS10_X86_136864.NASL", "SOLARIS8_136859.NASL", "SOLARIS8_136860.NASL", "SOLARIS8_136863.NASL", "SOLARIS9_136859.NASL", "SOLARIS9_136860.NASL", "SOLARIS9_136863.NASL"]}], "rev": 4}, "score": {"value": 8.2, "vector": "NONE"}, "backreferences": {"references": [{"type": "nessus", "idList": ["SOLARIS9_136859.NASL"]}]}, "exploitation": null, "vulnersScore": 8.2}, "_state": {"dependencies": 1659687063, "score": 1659757587, "affected_software_major_version": 1671556424}, "_internal": {}, "cna_cvss": {"cna": null, "cvss": {}}, "cpe": ["cpe:/a:symantec:veritas_netbackup_server_\\/enterprise_server:5.1", "cpe:/a:symantec:veritas_netbackup_server_\\/enterprise_server:6.5.2", "cpe:/a:symantec:veritas_netbackup_server_\\/enterprise_server:6.0", "cpe:/a:symantec:veritas_netbackup_server_\\/enterprise_server:5.1mp7", "cpe:/a:symantec:veritas_netbackup_server_\\/enterprise_server:6.5", "cpe:/a:symantec:veritas_netbackup_server_\\/enterprise_server:6.0mp7"], "cpe23": ["cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.0:*:*:*:*:*:*:*", "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:5.1mp7:*:*:*:*:*:*:*", "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.5:*:*:*:*:*:*:*", "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.5.2:*:*:*:*:*:*:*", "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:5.1:*:*:*:*:*:*:*", "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.0mp7:*:*:*:*:*:*:*"], "cwe": ["CWE-20"], "affectedSoftware": [{"cpeName": "symantec:veritas_netbackup_server_\\/enterprise_server", "version": "5.1", "operator": "eq", "name": "symantec veritas netbackup server \\/enterprise server"}, {"cpeName": "symantec:veritas_netbackup_server_\\/enterprise_server", "version": "5.1mp7", "operator": "le", "name": "symantec veritas netbackup server \\/enterprise server"}, {"cpeName": "symantec:veritas_netbackup_server_\\/enterprise_server", "version": "6.5", "operator": "eq", "name": "symantec veritas netbackup server \\/enterprise server"}, {"cpeName": "symantec:veritas_netbackup_server_\\/enterprise_server", "version": "6.5.2", "operator": "le", "name": "symantec veritas netbackup server \\/enterprise server"}, {"cpeName": "symantec:veritas_netbackup_server_\\/enterprise_server", "version": "6.0", "operator": "eq", "name": "symantec veritas netbackup server \\/enterprise server"}, {"cpeName": "symantec:veritas_netbackup_server_\\/enterprise_server", "version": "6.0mp7", "operator": "le", "name": "symantec veritas netbackup server \\/enterprise server"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"operator": "OR", "children": [], "cpe_match": [{"vulnerable": true, "cpe23Uri": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:5.1:*:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:5.1mp7:*:*:*:*:*:*:*", "versionEndIncluding": "5.1mp7", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.5:*:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.5.2:*:*:*:*:*:*:*", "versionEndIncluding": "6.5.2", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.0:*:*:*:*:*:*:*", "cpe_name": []}, {"vulnerable": true, "cpe23Uri": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.0mp7:*:*:*:*:*:*:*", "versionEndIncluding": "6.0mp7", "cpe_name": []}]}]}, "extraReferences": [{"url": "http://seer.entsupport.symantec.com/docs/317828.htm", "name": "http://seer.entsupport.symantec.com/docs/317828.htm", "refsource": "CONFIRM", "tags": ["Patch", "Vendor Advisory"]}, {"url": "http://secunia.com/advisories/33953", "name": "33953", "refsource": "SECUNIA", "tags": ["Vendor Advisory"]}, {"url": "http://www.securityfocus.com/bid/33772", "name": "33772", "refsource": "BID", "tags": []}, {"url": "http://www.securitytracker.com/id?1021734", "name": "1021734", "refsource": "SECTRACK", "tags": []}, {"url": "http://securityresponse.symantec.com/avcenter/security/Content/2009.02.17.html", "name": "http://securityresponse.symantec.com/avcenter/security/Content/2009.02.17.html", "refsource": "CONFIRM", "tags": []}, {"url": "http://osvdb.org/52269", "name": "52269", "refsource": "OSVDB", "tags": []}, {"url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-253287-1", "name": "253287", "refsource": "SUNALERT", "tags": []}, {"url": "http://www.vupen.com/english/advisories/2009/1097", "name": "ADV-2009-1097", "refsource": "VUPEN", "tags": []}, {"url": "http://www.vupen.com/english/advisories/2009/0461", "name": "ADV-2009-0461", "refsource": "VUPEN", "tags": []}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48795", "name": "veritas-netbackup-vnetd-privilege-escalation(48795)", "refsource": "XF", "tags": []}]}

{"nessus": [{"lastseen": "2023-01-11T14:58:58", "description": "VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for GA VERSION=6.\nDate this patch was last updated by Sun : Mar/31/10\n\nThis plugin has been deprecated and either replaced with individual 136859 patch-revision plugins, or deemed non-security related.", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 10 (sparc) : 136859-02 (deprecated)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS10_136859.NASL", "href": "https://www.tenable.com/plugins/nessus/36336", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# @DEPRECATED@\n#\n# Disabled on 2018/03/12. Deprecated and either replaced by\n# individual patch-revision plugins, or has been deemed a\n# non-security advisory.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(36336);\n script_version(\"1.17\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 10 (sparc) : 136859-02 (deprecated)\");\n script_summary(english:\"Check for patch 136859-02\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"This plugin has been deprecated.\");\n script_set_attribute(\n attribute:\"description\",\n value:\n\"VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for GA VERSION=6.\nDate this patch was last updated by Sun : Mar/31/10\n\nThis plugin has been deprecated and either replaced with individual\n136859 patch-revision plugins, or deemed non-security related.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"n/a\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/03/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\nexit(0, \"This plugin has been deprecated. Consult specific patch-revision plugins for patch 136859 instead.\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:55:27", "description": "VERITAS NetBackup 6.5 Product Release Hotf. Date this patch was last updated by Sun : Feb/24/09", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 8 (sparc) : 136863-01", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS8_136863.NASL", "href": "https://www.tenable.com/plugins/nessus/36954", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text in this plugin was\n# extracted from the Oracle SunOS Patch Updates.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(36954);\n script_version(\"1.15\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 8 (sparc) : 136863-01\");\n script_summary(english:\"Check for patch 136863-01\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote host is missing Sun Security Patch number 136863-01\");\n script_set_attribute(attribute:\"description\", value:\n\"VERITAS NetBackup 6.5 Product Release Hotf. Date this patch was last\nupdated by Sun : Feb/24/09\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"You should install this patch for your system to be up-to-date.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/02/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"solaris.inc\");\n\nvendornote = '\\nThis patch is no longer available from Oracle, as the Symantec Veritas\\n' +\n'NetBackup support contract with Oracle has ended. The patch has been\\n' +\n'removed from Oracle repositories.\\n\\n' +\n'Please contact the vendor for product support :\\n' +\n'http://www.symantec.com/theme.jsp?themeid=sun-support';\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nif (solaris_check_patch(release:\"5.8\", arch:\"sparc\", patch:\"136863-01\", obsoleted_by:\"127655-04 \", package:\"SYMCnetbp\", version:\"6.5,REV=2007.07.24.02.54\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report() + vendornote);\n else security_warning(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:55:40", "description": "VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for GA VERSION=6.\nDate this patch was last updated by Sun : Mar/31/10", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 9 (sparc) : 136859-02", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS9_136859.NASL", "href": "https://www.tenable.com/plugins/nessus/36684", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text in this plugin was\n# extracted from the Oracle SunOS Patch Updates.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(36684);\n script_version(\"1.16\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 9 (sparc) : 136859-02\");\n script_summary(english:\"Check for patch 136859-02\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote host is missing Sun Security Patch number 136859-02\");\n script_set_attribute(attribute:\"description\", value:\n\"VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for GA VERSION=6.\nDate this patch was last updated by Sun : Mar/31/10\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"You should install this patch for your system to be up-to-date.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/03/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"solaris.inc\");\n\nvendornote = '\\nThis patch is no longer available from Oracle, as the Symantec Veritas\\n' +\n'NetBackup support contract with Oracle has ended. The patch has been\\n' +\n'removed from Oracle repositories.\\n\\n' +\n'Please contact the vendor for product support :\\n' +\n'http://www.symantec.com/theme.jsp?themeid=sun-support';\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nif (solaris_check_patch(release:\"5.9\", arch:\"sparc\", patch:\"136859-02\", obsoleted_by:\"\", package:\"VRTSnetbp\", version:\"6.0,REV=2005.09.07.19.13\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report() + vendornote);\n else security_warning(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:58:47", "description": "5.10_x86 VERITAS NetBackup 6.5 Product Rel. Date this patch was last updated by Sun : Feb/24/09\n\nThis plugin has been deprecated and either replaced with individual 136864 patch-revision plugins, or deemed non-security related.", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 10 (x86) : 136864-01 (deprecated)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS10_X86_136864.NASL", "href": "https://www.tenable.com/plugins/nessus/37188", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# @DEPRECATED@\n#\n# Disabled on 2018/03/12. Deprecated and either replaced by\n# individual patch-revision plugins, or has been deemed a\n# non-security advisory.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(37188);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 10 (x86) : 136864-01 (deprecated)\");\n script_summary(english:\"Check for patch 136864-01\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"This plugin has been deprecated.\");\n script_set_attribute(\n attribute:\"description\",\n value:\n\"5.10_x86 VERITAS NetBackup 6.5 Product Rel. Date this patch was last\nupdated by Sun : Feb/24/09\n\nThis plugin has been deprecated and either replaced with individual\n136864 patch-revision plugins, or deemed non-security related.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"n/a\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/02/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\nexit(0, \"This plugin has been deprecated. Consult specific patch-revision plugins for patch 136864 instead.\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:56:49", "description": "VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for MP4 CD VERSI.\nDate this patch was last updated by Sun : Mar/31/10\n\nThis plugin has been deprecated and either replaced with individual 136860 patch-revision plugins, or deemed non-security related.", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 10 (sparc) : 136860-02 (deprecated)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS10_136860.NASL", "href": "https://www.tenable.com/plugins/nessus/36313", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# @DEPRECATED@\n#\n# Disabled on 2018/03/12. Deprecated and either replaced by\n# individual patch-revision plugins, or has been deemed a\n# non-security advisory.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(36313);\n script_version(\"1.17\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 10 (sparc) : 136860-02 (deprecated)\");\n script_summary(english:\"Check for patch 136860-02\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"This plugin has been deprecated.\");\n script_set_attribute(\n attribute:\"description\",\n value:\n\"VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for MP4 CD VERSI.\nDate this patch was last updated by Sun : Mar/31/10\n\nThis plugin has been deprecated and either replaced with individual\n136860 patch-revision plugins, or deemed non-security related.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"n/a\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/03/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\nexit(0, \"This plugin has been deprecated. Consult specific patch-revision plugins for patch 136860 instead.\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:55:27", "description": "VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for MP4 CD VERSI.\nDate this patch was last updated by Sun : Mar/31/10", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 9 (sparc) : 136860-02", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS9_136860.NASL", "href": "https://www.tenable.com/plugins/nessus/37558", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text in this plugin was\n# extracted from the Oracle SunOS Patch Updates.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(37558);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 9 (sparc) : 136860-02\");\n script_summary(english:\"Check for patch 136860-02\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote host is missing Sun Security Patch number 136860-02\");\n script_set_attribute(attribute:\"description\", value:\n\"VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for MP4 CD VERSI.\nDate this patch was last updated by Sun : Mar/31/10\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"You should install this patch for your system to be up-to-date.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/03/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"solaris.inc\");\n\nvendornote = '\\nThis patch is no longer available from Oracle, as the Symantec Veritas\\n' +\n'NetBackup support contract with Oracle has ended. The patch has been\\n' +\n'removed from Oracle repositories.\\n\\n' +\n'Please contact the vendor for product support :\\n' +\n'http://www.symantec.com/theme.jsp?themeid=sun-support';\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nif (solaris_check_patch(release:\"5.9\", arch:\"sparc\", patch:\"136860-02\", obsoleted_by:\"\", package:\"VRTSnetbp\", version:\"6.0,REV=2006.11.09.18.12\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report() + vendornote);\n else security_warning(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:59:36", "description": "VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for GA VERSION=6.\nDate this patch was last updated by Sun : Mar/31/10", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 8 (sparc) : 136859-02", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS8_136859.NASL", "href": "https://www.tenable.com/plugins/nessus/36415", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text in this plugin was\n# extracted from the Oracle SunOS Patch Updates.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(36415);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 8 (sparc) : 136859-02\");\n script_summary(english:\"Check for patch 136859-02\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote host is missing Sun Security Patch number 136859-02\");\n script_set_attribute(attribute:\"description\", value:\n\"VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for GA VERSION=6.\nDate this patch was last updated by Sun : Mar/31/10\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"You should install this patch for your system to be up-to-date.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/03/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"solaris.inc\");\n\nvendornote = '\\nThis patch is no longer available from Oracle, as the Symantec Veritas\\n' +\n'NetBackup support contract with Oracle has ended. The patch has been\\n' +\n'removed from Oracle repositories.\\n\\n' +\n'Please contact the vendor for product support :\\n' +\n'http://www.symantec.com/theme.jsp?themeid=sun-support';\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nif (solaris_check_patch(release:\"5.8\", arch:\"sparc\", patch:\"136859-02\", obsoleted_by:\"\", package:\"VRTSnetbp\", version:\"6.0,REV=2005.09.07.19.13\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report() + vendornote);\n else security_warning(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:55:19", "description": "VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for MP4 CD VERSI.\nDate this patch was last updated by Sun : Mar/31/10", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 8 (sparc) : 136860-02", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS8_136860.NASL", "href": "https://www.tenable.com/plugins/nessus/37098", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text in this plugin was\n# extracted from the Oracle SunOS Patch Updates.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(37098);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 8 (sparc) : 136860-02\");\n script_summary(english:\"Check for patch 136860-02\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote host is missing Sun Security Patch number 136860-02\");\n script_set_attribute(attribute:\"description\", value:\n\"VERITAS NetBackup 6.0 Product Hotfix Patch MP7S02 for MP4 CD VERSI.\nDate this patch was last updated by Sun : Mar/31/10\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"You should install this patch for your system to be up-to-date.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/03/31\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"solaris.inc\");\n\nvendornote = '\\nThis patch is no longer available from Oracle, as the Symantec Veritas\\n' +\n'NetBackup support contract with Oracle has ended. The patch has been\\n' +\n'removed from Oracle repositories.\\n\\n' +\n'Please contact the vendor for product support :\\n' +\n'http://www.symantec.com/theme.jsp?themeid=sun-support';\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nif (solaris_check_patch(release:\"5.8\", arch:\"sparc\", patch:\"136860-02\", obsoleted_by:\"\", package:\"VRTSnetbp\", version:\"6.0,REV=2006.11.09.18.12\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report() + vendornote);\n else security_warning(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:55:33", "description": "VERITAS NetBackup 6.5 Product Release Hotf. Date this patch was last updated by Sun : Feb/24/09", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 9 (sparc) : 136863-01", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS9_136863.NASL", "href": "https://www.tenable.com/plugins/nessus/37722", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text in this plugin was\n# extracted from the Oracle SunOS Patch Updates.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(37722);\n script_version(\"1.15\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 9 (sparc) : 136863-01\");\n script_summary(english:\"Check for patch 136863-01\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"The remote host is missing Sun Security Patch number 136863-01\");\n script_set_attribute(attribute:\"description\", value:\n\"VERITAS NetBackup 6.5 Product Release Hotf. Date this patch was last\nupdated by Sun : Feb/24/09\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"You should install this patch for your system to be up-to-date.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/02/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"solaris.inc\");\n\nvendornote = '\\nThis patch is no longer available from Oracle, as the Symantec Veritas\\n' +\n'NetBackup support contract with Oracle has ended. The patch has been\\n' +\n'removed from Oracle repositories.\\n\\n' +\n'Please contact the vendor for product support :\\n' +\n'http://www.symantec.com/theme.jsp?themeid=sun-support';\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nif (solaris_check_patch(release:\"5.9\", arch:\"sparc\", patch:\"136863-01\", obsoleted_by:\"127655-04 \", package:\"SYMCnetbp\", version:\"6.5,REV=2007.07.24.02.54\") < 0) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:solaris_get_report() + vendornote);\n else security_warning(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T14:53:00", "description": "VERITAS NetBackup 6.5 Product Release Hotf. Date this patch was last updated by Sun : Feb/24/09\n\nThis plugin has been deprecated and either replaced with individual 136863 patch-revision plugins, or deemed non-security related.", "cvss3": {}, "published": "2009-04-23T00:00:00", "type": "nessus", "title": "Solaris 10 (sparc) : 136863-01 (deprecated)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": true, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.5, "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "SINGLE"}, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2009-0651"], "modified": "2021-01-14T00:00:00", "cpe": ["cpe:/o:sun:solaris"], "id": "SOLARIS10_136863.NASL", "href": "https://www.tenable.com/plugins/nessus/37316", "sourceData": "#%NASL_MIN_LEVEL 70300\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# @DEPRECATED@\n#\n# Disabled on 2018/03/12. Deprecated and either replaced by\n# individual patch-revision plugins, or has been deemed a\n# non-security advisory.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(37316);\n script_version(\"1.20\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2009-0651\");\n script_xref(name:\"IAVT\", value:\"2009-T-0014\");\n\n script_name(english:\"Solaris 10 (sparc) : 136863-01 (deprecated)\");\n script_summary(english:\"Check for patch 136863-01\");\n\n script_set_attribute(attribute:\"synopsis\", value:\"This plugin has been deprecated.\");\n script_set_attribute(\n attribute:\"description\",\n value:\n\"VERITAS NetBackup 6.5 Product Release Hotf. Date this patch was last\nupdated by Sun : Feb/24/09\n\nThis plugin has been deprecated and either replaced with individual\n136863 patch-revision plugins, or deemed non-security related.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://support.oracle.com/epmos/faces/DocContentDisplay?id=1682359.1\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.symantec.com/business/theme.jsp?themeid=sun-support\");\n script_set_attribute(attribute:\"solution\", value:\"n/a\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P\");\n script_cwe_id(20);\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:sun:solaris\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/02/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/04/23\");\n\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.\");\n script_family(english:\"Solaris Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Solaris/showrev\");\n\n exit(0);\n}\n\nexit(0, \"This plugin has been deprecated. Consult specific patch-revision plugins for patch 136863 instead.\");\n", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}}]}

CVE-2009-0651

Description

Affected Software

Related