Lucene search
K

337 matches found

NVD
NVD
added 2018/02/19 7:29 p.m.20 views

CVE-2011-3477

GEAR Software CD DVD Filter driver aka GEARAspiWDM.sys, as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service system crash via unspecified vectors...

5.5CVSS5.3AI score0.00633EPSS
Exploits0References2
CVE
CVE
added 2018/02/19 7:0 p.m.41 views

CVE-2011-3477

CVE-2011-3477 concerns the GEAR Software CD/DVD Filter driver (GEARAspiWDM.sys) as used in several Symantec products (Backup Exec System Recovery 8.5 and BESR 2010, System Recovery 2011, Norton 360, Norton Ghost). According to the linked records, the vulnerability enables a local attacker to caus...

5.5CVSS5.2AI score0.00633EPSS
Exploits0References2Affected Software4
Cvelist
Cvelist
added 2018/02/19 7:0 p.m.23 views

CVE-2011-3477

GEAR Software CD DVD Filter driver aka GEARAspiWDM.sys, as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service system crash via unspecified vectors...

5.3AI score0.00633EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2017/10/11 12:0 a.m.6 views

The vulnerability of the SSL software used in Backup Exec’s backup and recovery services allows attackers to execute arbitrary code or trigger a service failure.

The vulnerability of Backup Exec’s SSL software for backup and restoration services relates to the use of memory after it is freed i.e., after the agent completes its tasks. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause service failures using...

10CVSS8.2AI score0.71003EPSS
Exploits4References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/07/07 12:0 a.m.19 views

Veritas Backup Exec Remote Agent Installed

Binary data veritasbackupexecremoteagentinstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2017/07/07 12:0 a.m.441 views

Veritas Backup Exec Remote Agent 14.1.x < 14.1.1786.1126 / 14.2.x < 14.2.1180.3160 / 16.0.x < 16.0.1142.1327 Use-after-free RCE (VTS17-006)

The version of Vertias Backup Exec Remote Agent installed on the remote Windows host is 14.1.x prior to 14.1.1786.1126, 14.2.x prior to 14.2.1180.3160, or 16.0.x prior to 16.0.1142.1327. It is, therefore, affected by a remote code execution vulnerability due to a use-after-free error that is...

10CVSS9.3AI score0.71003EPSS
Exploits4References3
0day.today
0day.today
added 2017/06/29 12:0 a.m.104 views

Veritas / Symantec Backup Exec - SSL NDMP Connection Use-After-Free Exploit

Exploit for windows platform in category remote exploits This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/ndmpsocket' require 'openssl' require 'xdr' class MetasploitModule 'Veritas/Symantec...

10CVSS9.2AI score0.71003EPSS
Exploits4
Packet Storm
Packet Storm
added 2017/06/29 12:0 a.m.90 views

Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/ndmpsocket' require 'openssl' require 'xdr' class MetasploitModule 'Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free',...

10CVSS0.71003EPSS
Exploits4
Exploit DB
Exploit DB
added 2017/06/29 12:0 a.m.113 views

Veritas/Symantec Backup Exec - SSL NDMP Connection Use-After-Free (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core/exploit/ndmpsocket' require 'openssl' require 'xdr' class MetasploitModule 'Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free',...

10CVSS7.4AI score0.71003EPSS
Exploits4
Metasploit
Metasploit
added 2017/05/23 12:18 p.m.75 views

Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free

This module exploits a use-after-free vulnerability in the handling of SSL NDMP connections in Veritas/Symantec Backup Exec's Remote Agent for Windows. When SSL is re-established on a NDMP connection that previously has had SSL established, the BIO struct for the connection's previous SSL session...

9.8CVSS9.9AI score0.71003EPSS
Exploits4
CNVD
CNVD
added 2017/05/12 12:0 a.m.6 views

Veritas Backup Exec Agent for Windows/Linux and Mac Memory Corruption Vulnerability

Veritas Backup Exec Agent is a suite of backup and recovery solutions from Veritas Technologies, USA. A memory corruption vulnerability exists in Veritas Backup Exec Agent for Windows, Linux, and Mac-based platforms. A remote attacker could exploit the vulnerability to cause the agent to crash or...

10CVSS7.1AI score0.71003EPSS
Exploits4References1
Prion
Prion
added 2017/05/10 9:29 p.m.23 views

Double free

In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of service or remote code execution. An unauthenticated attacker can use this vulnerability to crash the...

10CVSS9.8AI score0.71003EPSS
Exploits4References4Affected Software1
OSV
OSV
added 2017/05/10 9:29 p.m.6 views

CVE-2017-8895

In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of service or remote code execution. An unauthenticated attacker can use this vulnerability to crash the...

9.8CVSS6.1AI score0.71003EPSS
Exploits4References4
NVD
NVD
added 2017/05/10 9:29 p.m.19 views

CVE-2017-8895

In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of service or remote code execution. An unauthenticated attacker can use this vulnerability to crash the...

10CVSS10AI score0.71003EPSS
Exploits4References4
CVE
CVE
added 2017/05/10 9:0 p.m.107 views

CVE-2017-8895

Summary (CVE-2017-8895) : The vulnerability affects Veritas/Symantec Backup Exec Remote Agent for Windows (NDMP SSL) where a use-after-free during SSL NDMP session handling can lead to remote code execution or denial of service. Affected versions identified in connected docs: 14.1.x before 14.1.1...

10CVSS9.8AI score0.71003EPSS
Exploits4References4Affected Software1
Cvelist
Cvelist
added 2017/05/10 9:0 p.m.24 views

CVE-2017-8895

In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of service or remote code execution. An unauthenticated attacker can use this vulnerability to crash the...

10AI score0.71003EPSS
Exploits4References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Backup Exec System Recovery Manager <= 7.0.1 File Upload Exploit

No description provided by source. ?xml version=1.0? html xmlns=http://www.w3.org/1999/xhtml headtitleFile Upload POC/title/head body h2 Backup Exec System Recovery Manager 7.0brFile Upload POC/h2 form action=https://TARGET:8443/axis/FileUpload method=post enctype=multipart/form-data Remote Path:...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Symantec Backup Exec System Recovery Manager 7.0 FileUpload Class Unauthorized File Upload Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27487/info Symantec Backup Exec System Recovery Manager is prone to a vulnerability that allows arbitrary unauthorized files to be uploaded to any location on the affected server. This issue resides in the Symantec...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

Veritas Backup Exec Name Service Overflow

No description provided by source. $Id: nameservice.rb 9583 2010-06-22 19:11:05Z todb $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/03/31 12:0 a.m.26 views

Veritas Backup Exec Server Remote Registry Access Code Execution - Ver2 (CVE-2005-0771)

A code execution vulnerability has been reported in Veritas Backup Exec Server. Successful exploitation of this vulnerability could allow a remote attacker to modify the registry and execute arbitrary methods via RPC on the affected system...

10CVSS5.5AI score0.54155EPSS
Exploits2
Rows per page
Query Builder