Lucene search

[email protected]CVE-2009-0651

HistoryFeb 20, 2009 - 6:30 p.m.

CVE-2009-0651

2009-02-2018:30:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2009-0651

symantec

veritas

netbackup

server

enterprise server

remote code execution

vulnerability

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.6%

JSON

Unspecified vulnerability in the Veritas network daemon (aka vnetd) in Symantec Veritas NetBackup Server / Enterprise Server 5.x, 6.0 before MP7 SP1, and 6.5 before 6.5.3.1 allows remote attackers to execute arbitrary code via unknown vectors related to “initial communications setup.”

Affected configurations

NVD

Node

symantecveritas_netbackup_server_\/enterprise_serverRange≤5.1mp7

symantecveritas_netbackup_server_\/enterprise_serverRange≤6.0mp7

symantecveritas_netbackup_server_\/enterprise_serverRange≤6.5.2

symantecveritas_netbackup_server_\/enterprise_serverMatch5.1

symantecveritas_netbackup_server_\/enterprise_serverMatch6.0

symantecveritas_netbackup_server_\/enterprise_serverMatch6.5

CPENameOperatorVersion
symantec:veritas_netbackup_server_\/enterprise_serversymantec veritas netbackup server /enterprise serverle5.1mp7
symantec:veritas_netbackup_server_\/enterprise_serversymantec veritas netbackup server /enterprise serverle6.0mp7
symantec:veritas_netbackup_server_\/enterprise_serversymantec veritas netbackup server /enterprise serverle6.5.2
symantec:veritas_netbackup_server_\/enterprise_serversymantec veritas netbackup server /enterprise servereq5.1
symantec:veritas_netbackup_server_\/enterprise_serversymantec veritas netbackup server /enterprise servereq6.0
symantec:veritas_netbackup_server_\/enterprise_serversymantec veritas netbackup server /enterprise servereq6.5

CPE	Name	Operator	Version
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server /enterprise server	le	5.1mp7
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server /enterprise server	le	6.0mp7
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server /enterprise server	le	6.5.2
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server /enterprise server	eq	5.1
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server /enterprise server	eq	6.0
symantec:veritas_netbackup_server_\/enterprise_server	symantec veritas netbackup server /enterprise server	eq	6.5

References

osvdb.org/52269

secunia.com/advisories/33953

securityresponse.symantec.com/avcenter/security/Content/2009.02.17.html

seer.entsupport.symantec.com/docs/317828.htm

sunsolve.sun.com/search/document.do?assetkey=1-66-253287-1

www.securityfocus.com/bid/33772

www.securitytracker.com/id?1021734

www.vupen.com/english/advisories/2009/0461

www.vupen.com/english/advisories/2009/1097

exchange.xforce.ibmcloud.com/vulnerabilities/48795

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.6%

JSON

Related for CVE-2009-0651

nessus10 nvd1 prion1 cvelist1