24 matches found
Multiple Veritas Product Security Vulnerabilities
Veritas Infoscale and others are products of Veritas, Inc.Veritas Infoscale is a highly available virtualized storage software.Veritas Foundation For Windows is a backup, storage management software.Veritas Foundation HA For Veritas Foundation HA For Windows is a backup, storage management...
ZDI-11-264: Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability
ZDI-11-264: Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-264 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec --...
ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability
ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-263 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec -- Affected...
Symantec Veritas Storage Foundation vxsvc.exe Unicode String Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the vxsvc.exe process. The problem affecting the part of the serve...
Symantec VERITAS Storage Foundation Administrator Service Buffer Overflow (CVE-2008-0638)
Symantec VERITAS Storage Foundation, provides a complete solution for heterogeneous online storage management. Storage Foundation Management Server allows centralized storage management capabilities across a broad array of operating systems and storage hardware. There exists a buffer overflow...
Symantec Veritas Storage Foundation unauthorized access
qioadmin utility allows local files read access. qiomkfile allows memory content reading...
SECOBJADV-2008-05: Symantec Veritas Storage Foundation Arbitrary File Read Vulnerability
====================================================================== = Security Objectives Advisory SECOBJADV-2008-05 = ====================================================================== Veritas Storage Foundation Arbitrary File Read Vulnerability...
Authentication flaw
The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...
CVE-2008-3703
The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...
SYM08-015_SFW_SecurityUpdateBypass
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Symantec Security Advisory SYM08-015 14 Aug, 2008 Veritas Storage Foundation for Windows Volume Manager Scheduler Service for Windows Security Update Circumvention Revision History None Severity Medium Remote Access Yes, network access required Loca...
VERITAS Storage Foundation NULL NTLMSSP Authentication Bypass (SYM08-015)
The version of the Scheduler Service component installed as part of Veritas Storage Foundation for Windows on the remote host allows NULL NTLMSSP authentication. If requests can be sent to the TCP service listening on port 4888, a remote attacker can leverage this issue to add, modify, or delete...
Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability
This vulnerability allows an attacker to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists in the...
Veritas Storage Foundation Multiple Service Remote DoS (SYM08-004)
Veritas Storage Foundation, a storage management solution from Symantec is installed on the remote host. The installed version is reportedly affected by a denial of service vulnerability. By sending specially crafted IP packets to TCP port 4888, an unauthenticated attacker may be able to cause a...
Veritas Storage Foundation Administrator service buffer overflow
Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe , listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...
Veritas Storage Foundation Administrator service buffer overflow
Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe, listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...
Veritas Storage Foundation Administrator service buffer overflow
Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe, listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...
Veritas Storage Foundation Administrator service buffer overflow
Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe , listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...
Symantec Veritas Storage Foundation Scheduler服务远程拒绝服务漏洞
BUGTRAQ ID: 27440 CVECAN ID: CVE-2007-4516 Veritas Storage Foundation是用于管理Veritas产品存储的解决方案。 Veritas Storage Foundation的Veritas Scheduler服务处理畸形用户请求时存在漏洞,远程攻击者可能利用此漏洞导致服务不可用。 如果Veritas Scheduler服务(VxSchedService.exe)接收到了畸形报文,就会触发无效的内存访问,导致该服务崩溃。攻击者无需认证便可以利用这个漏洞,但必须要在服务的4888端口创建TCP会话。 Symantec Verit...
iDefense Security Advisory 02.20.08: Symantec Veritas Storage Foundation Scheduler Service DoS Vulnerability
iDefense Security Advisory 02.20.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 20, 2008 I. BACKGROUND The Veritas Storage Foundation is based on the Veritas File System and Veritas Volume Manager products. It allows virtualization of storage over a variety of platforms. It contain...
Symantec VERITAS Storage Foundation Administrator Service Heap Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Symantec VERITAS Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw resides in the Administrator service, vxsvc.exe, which listens by default on UDP port...