4 matches found
The vulnerability of the NVBUBackup PluginList request handler in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.
The vulnerability of the NVBUBackup PluginList request processor in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...
CVE-2017-17655
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUBackup PluginList method requests. The issue resul...
CVE-2017-17655
The CVE concerns Quest NetVault Backup (11.3.0.12). The vulnerability is a SQL injection in the NVBUBackup PluginList request handling, caused by improper validation of a user-supplied string used to construct SQL queries. This enables remote code execution in the context of the underlying databa...
Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37633)
Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUBackup PluginList method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly detect user-submitted strings...