CVE-2005-3106

Race condition in Linux 2.6, when threads are sharing memory mapping via CLONEVM such as linuxthreads and vfork, might allow local users to cause a denial of service deadlock by triggering a core dump while waiting for a thread that has just performed an exec...

CVE-2005-3106

Race condition in Linux 2.6, when threads are sharing memory mapping via CLONEVM such as linuxthreads and vfork, might allow local users to cause a denial of service deadlock by triggering a core dump while waiting for a thread that has just performed an exec...

wzdftpd unfiltered shell characters problem

popen unfiltered characters on SITE EXEC command...

VERITAS Storage Exec DCOM servers contain multiple buffer overflows

Overview VERITAS Storage Exec contains several buffer overflows, which may allow a remote attacker to execute arbitrary code on a vulnerable system. Description VERITAS Storage Exec is software package that performs storage management. Multiple DCOM server components provided by Storage Exec...

CVE-2005-2996

Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls...

CVE-2005-2996

Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls...

CVE-2005-2996

The connected advisory CPAI-2005-297 describes a buffer overflow in Veritas Storage Exec and StorageCentral DCOM Server components. The flaw is caused by insufficient validation of user-supplied data, allowing remote code execution in the security context of the logged-on user when a target user ...

CVE-2005-2611

VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write...

CVE-2005-2611

VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write...

CVE-2005-2611

CVE-2005-2611 affects VERITAS Backup Exec/NetWare components and NetBackup NetWare Media Server Option, where a static/hard-coded NDMP authentication credential enables remote attackers to read and write arbitrary files on the backup server. Products and versions implicated include VERITAS Backup...

KLA10377 WLF vulnerability in Veritas Backup Exec

An insecure auth was found in Veritas Backup Exec. By exploiting this vulnerability malicious users can read & write arbitrary code. This vulnerability can be exploited remotely at a point related to NDMP agent. Original advisories Symantec bulletin Related products VERITAS-Backup-Exec CVE list...

Veritas Backup Exec unauthorized access

It's possible to retrieve any file from TCP/10000...

backupexec_dump.pm.txt

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

VERITAS Backup Exec uses hard-coded authentication credentials

Overview The VERITAS Backup Exec Remote Agent uses hard-coded authentication credentials. An attacker with knowledge of these credentials could access arbitrary files on a vulnerable system. Description VERITAS Backup Exec Remote Agent is a data backup and recovery solution with support for...

VERITAS Backup Exec Remote Agent Static Password Arbitrary File Download

The remote host is running a version of VERITAS Backup Exec Agent which is configured with a default root account. An attacker may exploit this flaw to retrieve files from the remote host. C Tenable Network Security, Inc. Credit for the default root account values: - Metsaploit and an anonymous...

Veritas Backup Exec Remote File Access Exploit (windows)

Exploit for unknown platform in category remote exploits ======================================================== Veritas Backup Exec Remote File Access Exploit windows ======================================================== This file is part of the Metasploit Framework and may be redistributed...

Veritas Backup Exec (Windows) - Remote File Access (Metasploit)

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

VERITAS Backup Exec Agent Unauthenticated Remote Registry Access

The remote host is running a version of VERITAS Backup Exec for Windows that is vulnerable to a remote registry access. An attacker may exploit this flaw to modify the remote registry and gain a full access to the system. To exploit this flaw, an attacker would need to send requests to the RPC...

CVE-2005-2079

Heap-based buffer overflow in the Admin Plus Pack Option for VERITAS Backup Exec 9.0 through 10.0 for Windows Servers allows remote attackers to execute arbitrary code...

FreeBSD : opera -- kfmclient exec command execution vulnerability (d8e55d65-81d6-11d9-a9e7-0001020eed82)

Giovanni Delvecchio reports : Opera for linux uses 'kfmclient exec' as 'Default Application' to handle saved files. This could be used by malicious remote users to execute arbitrary shell commands on a target system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...