CVE-2005-2611

CVE-2005-2611 affects VERITAS Backup Exec/NetWare components and NetBackup NetWare Media Server Option, where a static/hard-coded NDMP authentication credential enables remote attackers to read and write arbitrary files on the backup server. Products and versions implicated include VERITAS Backup...

CVE-2005-2611

VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write...

KLA10377 WLF vulnerability in Veritas Backup Exec

An insecure auth was found in Veritas Backup Exec. By exploiting this vulnerability malicious users can read & write arbitrary code. This vulnerability can be exploited remotely at a point related to NDMP agent. Original advisories Symantec bulletin Related products VERITAS-Backup-Exec CVE list...

Veritas Backup Exec unauthorized access

It's possible to retrieve any file from TCP/10000...

backupexec_dump.pm.txt

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

VERITAS Backup Exec uses hard-coded authentication credentials

Overview The VERITAS Backup Exec Remote Agent uses hard-coded authentication credentials. An attacker with knowledge of these credentials could access arbitrary files on a vulnerable system. Description VERITAS Backup Exec Remote Agent is a data backup and recovery solution with support for...

VERITAS Backup Exec Remote Agent Static Password Arbitrary File Download

The remote host is running a version of VERITAS Backup Exec Agent which is configured with a default root account. An attacker may exploit this flaw to retrieve files from the remote host. C Tenable Network Security, Inc. Credit for the default root account values: - Metsaploit and an anonymous...

Veritas Backup Exec Remote File Access Exploit (windows)

Exploit for unknown platform in category remote exploits ======================================================== Veritas Backup Exec Remote File Access Exploit windows ======================================================== This file is part of the Metasploit Framework and may be redistributed...

Veritas Backup Exec (Windows) - Remote File Access (Metasploit)

This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...

VERITAS Backup Exec Agent Unauthenticated Remote Registry Access

The remote host is running a version of VERITAS Backup Exec for Windows that is vulnerable to a remote registry access. An attacker may exploit this flaw to modify the remote registry and gain a full access to the system. To exploit this flaw, an attacker would need to send requests to the RPC...

CVE-2005-2079

Heap-based buffer overflow in the Admin Plus Pack Option for VERITAS Backup Exec 9.0 through 10.0 for Windows Servers allows remote attackers to execute arbitrary code...

FreeBSD : opera -- kfmclient exec command execution vulnerability (d8e55d65-81d6-11d9-a9e7-0001020eed82)

Giovanni Delvecchio reports : Opera for linux uses 'kfmclient exec' as 'Default Application' to handle saved files. This could be used by malicious remote users to execute arbitrary shell commands on a target system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

Symantec Veritas Backup Exec Server Remote Registry Access (CAN-2005-0771)

...

GLSA-200507-03 : phpBB: Arbitrary command execution

The remote host is affected by the vulnerability described in GLSA-200507-03 phpBB: Arbitrary command execution Ron van Daal discovered that phpBB contains a vulnerability in the highlighting code. Impact : Successful exploitation would grant an attacker unrestricted access to the PHP exec or...

Fedora Core 4 : kernel-2.6.12-1.1387_FC4 (2005-510)

Wed Jun 29 2005 Dave Jones - 2.6.12.2 - Mon Jun 27 2005 Dave Jones - Disable multipath caches. 161168 - Reenable AMD756 I2C driver for x86-64. 159609 - Add more IBM r40e BIOS's to the C2/C3 blacklist. - Thu Jun 23 2005 Dave Jones - Make orinoco driver suck less. Scanning/roaming/ethtool support...

Multiple Veritas Backup Exec backup solutions vulnerabilities

Multiple vulnerabilities, including remote buffer overflows and DoS...

CVE-2005-0773

Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECTCLIENTAUTH request with authentication method type 3 Windows credentials and a long password argume...

CVE-2005-2079

CVE-2005-2079 describes a heap-based buffer overflow in the Admin Plus Pack Option for VERITAS Backup Exec 9.0–10.0 on Windows Servers. The flaw is capable of enabling remote attackers to execute arbitrary code. The root cause is a heap-based overflow in the Admin Plus Pack Option, leading to pot...

CVE-2005-0771

CVE-2005-0771 affects VERITAS Backup Exec Server (beserver.exe) on Windows versions 9.0–10.0. It permits unauthenticated remote RPC access on TCP port 6106 that can modify the Windows registry, enabling an attacker to gain full registry control and potentially compromise the host. The vulnerabili...

CVE-2005-0771

VERITAS Backup Exec Server beserver.exe 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106...