6 matches found
Symantec Multiple Products VRTSweb Code Execution (CVE-2009-3027)
Symantec VERITAS Web Server VRTSweb is a shared component shipped with multiple Symantec products. VRTSweb is a Web Restore Server Component which can be used for managing Server SSL certificates, configuring SMTP notifications, managing communication ports, and other tasks. VRTSweb is developed...
[security bulletin] HPSBUX02480 SSRT090253 rev.1 - HP-UX Running VRTSweb, Remote Execution of Arbitrary Code, Increase of Privilege
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01943614 Version: 1 HPSBUX02480 SSRT090253 rev.1 - HP-UX Running VRTSweb, Remote Execution of Arbitrary Code, Increase of Privilege NOTICE: The information in this Security Bulletin should be act...
HP-UX PHCO_40519 : HP-UX Running VRTSweb, Remote Execution of Arbitrary Code, Increase of Privilege (HPSBUX02480 SSRT090253 rev.1)
s700800 11.31 VRTS 5.0 GARP1 VRTSweb Patch : A potential security vulnerability has been identified with HP-UX running VRTSweb version 5.0. The vulnerability could be exploited remotely to execute arbitrary code or increase privilege. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
HP-UX PHCO_40520 : HP-UX Running VRTSweb, Remote Execution of Arbitrary Code, Increase of Privilege (HPSBUX02480 SSRT090253 rev.1)
s700800 11.31 VRTS 5.0.1 GARP1 VRTSweb Patch : A potential security vulnerability has been identified with HP-UX running VRTSweb version 5.0. The vulnerability could be exploited remotely to execute arbitrary code or increase privilege. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
CVE-2009-3027
VRTSweb.exe in VRTSweb in Symantec Backup Exec Continuous Protection Server CPS 11d, 12.0, and 12.5; Veritas NetBackup Operations Manager NOM 6.0 GA through 6.5.5; Veritas Backup Reporter VBR 6.0 GA through 6.6; Veritas Storage Foundation SF 3.5; Veritas Storage Foundation for Windows High...
CVE-2009-3027
CVE-2009-3027 affects numerous Symantec/Veritas products' VRTSweb component. The flaw is in VRTSweb.exe, where the Web Server on TCP/14300 fails to properly validate an authentication request, allowing a remote attacker to trigger unpacking of a WAR archive and execute arbitrary code. The impact ...