Lucene search
K

24 matches found

CNNVD
CNNVD
added 2021/01/05 12:0 a.m.6 views

Multiple Veritas Product Security Vulnerabilities

Veritas Infoscale and others are products of Veritas, Inc.Veritas Infoscale is a highly available virtualized storage software.Veritas Foundation For Windows is a backup, storage management software.Veritas Foundation HA For Veritas Foundation HA For Windows is a backup, storage management...

9.3CVSS7.3AI score0.00431EPSS
Exploits0References2
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.57 views

ZDI-11-264: Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability

ZDI-11-264: Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-264 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec --...

10CVSS1.5AI score0.06646EPSS
Exploits0
securityvulns
securityvulns
added 2011/08/17 12:0 a.m.79 views

ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability

ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-263 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec -- Affected...

10CVSS0.5AI score0.06646EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2011/08/16 12:0 a.m.29 views

Symantec Veritas Storage Foundation vxsvc.exe Unicode String Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the vxsvc.exe process. The problem affecting the part of the serve...

10CVSS5.7AI score0.06646EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2009/11/01 12:0 a.m.26 views

Symantec VERITAS Storage Foundation Administrator Service Buffer Overflow (CVE-2008-0638)

Symantec VERITAS Storage Foundation, provides a complete solution for heterogeneous online storage management. Storage Foundation Management Server allows centralized storage management capabilities across a broad array of operating systems and storage hardware. There exists a buffer overflow...

9.3CVSS8.3AI score0.05957EPSS
Exploits5
securityvulns
securityvulns
added 2008/10/26 12:0 a.m.43 views

Symantec Veritas Storage Foundation unauthorized access

qioadmin utility allows local files read access. qiomkfile allows memory content reading...

4.6CVSS3.7AI score0.00347EPSS
Exploits1References2Affected Software1
securityvulns
securityvulns
added 2008/10/23 12:0 a.m.51 views

SECOBJADV-2008-05: Symantec Veritas Storage Foundation Arbitrary File Read Vulnerability

====================================================================== = Security Objectives Advisory SECOBJADV-2008-05 = ====================================================================== Veritas Storage Foundation Arbitrary File Read Vulnerability...

4.6CVSS0.2AI score0.00325EPSS
Exploits0
Prion
Prion
added 2008/08/18 5:41 p.m.18 views

Authentication flaw

The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...

10CVSS8.2AI score0.12246EPSS
Exploits0References11Affected Software1
Cvelist
Cvelist
added 2008/08/18 5:15 p.m.29 views

CVE-2008-3703

The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...

7.8AI score0.12246EPSS
Exploits0References11
securityvulns
securityvulns
added 2008/08/15 12:0 a.m.28 views

SYM08-015_SFW_SecurityUpdateBypass

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Symantec Security Advisory SYM08-015 14 Aug, 2008 Veritas Storage Foundation for Windows Volume Manager Scheduler Service for Windows Security Update Circumvention Revision History None Severity Medium Remote Access Yes, network access required Loca...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/08/15 12:0 a.m.90 views

VERITAS Storage Foundation NULL NTLMSSP Authentication Bypass (SYM08-015)

The version of the Scheduler Service component installed as part of Veritas Storage Foundation for Windows on the remote host allows NULL NTLMSSP authentication. If requests can be sent to the TCP service listening on port 4888, a remote attacker can leverage this issue to add, modify, or delete...

10CVSS5.8AI score0.12246EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2008/08/14 12:0 a.m.36 views

Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability

This vulnerability allows an attacker to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists in the...

10CVSS2.9AI score0.12246EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2008/04/15 12:0 a.m.18 views

Veritas Storage Foundation Multiple Service Remote DoS (SYM08-004)

Veritas Storage Foundation, a storage management solution from Symantec is installed on the remote host. The installed version is reportedly affected by a denial of service vulnerability. By sending specially crafted IP packets to TCP port 4888, an unauthenticated attacker may be able to cause a...

9.3CVSS5.5AI score0.05957EPSS
Exploits6References7
Saint
Saint
added 2008/03/03 12:0 a.m.20 views

Veritas Storage Foundation Administrator service buffer overflow

Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe , listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...

9.3CVSS7.7AI score0.05957EPSS
Exploits5
Saint
Saint
added 2008/03/03 12:0 a.m.32 views

Veritas Storage Foundation Administrator service buffer overflow

Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe, listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...

9.3CVSS7.7AI score0.05957EPSS
Exploits5
Saint
Saint
added 2008/03/03 12:0 a.m.27 views

Veritas Storage Foundation Administrator service buffer overflow

Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe, listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...

9.3CVSS7.7AI score0.05957EPSS
Exploits5
Saint
Saint
added 2008/03/03 12:0 a.m.25 views

Veritas Storage Foundation Administrator service buffer overflow

Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe , listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...

9.3CVSS7.7AI score0.05957EPSS
Exploits5
seebug.org
seebug.org
added 2008/02/22 12:0 a.m.27 views

Symantec Veritas Storage Foundation Scheduler服务远程拒绝服务漏洞

BUGTRAQ ID: 27440 CVECAN ID: CVE-2007-4516 Veritas Storage Foundation是用于管理Veritas产品存储的解决方案。 Veritas Storage Foundation的Veritas Scheduler服务处理畸形用户请求时存在漏洞,远程攻击者可能利用此漏洞导致服务不可用。 如果Veritas Scheduler服务(VxSchedService.exe)接收到了畸形报文,就会触发无效的内存访问,导致该服务崩溃。攻击者无需认证便可以利用这个漏洞,但必须要在服务的4888端口创建TCP会话。 Symantec Verit...

4.3CVSS6.4AI score0.01407EPSS
Exploits1
securityvulns
securityvulns
added 2008/02/22 12:0 a.m.51 views

iDefense Security Advisory 02.20.08: Symantec Veritas Storage Foundation Scheduler Service DoS Vulnerability

iDefense Security Advisory 02.20.08 http://labs.idefense.com/intelligence/vulnerabilities/ Feb 20, 2008 I. BACKGROUND The Veritas Storage Foundation is based on the Veritas File System and Veritas Volume Manager products. It allows virtualization of storage over a variety of platforms. It contain...

4.3CVSS0.5AI score0.01407EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2008/02/20 12:0 a.m.31 views

Symantec VERITAS Storage Foundation Administrator Service Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Symantec VERITAS Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw resides in the Administrator service, vxsvc.exe, which listens by default on UDP port...

9.3CVSS3.6AI score0.05957EPSS
Exploits5References1
Rows per page
Query Builder