34 matches found
MiracleLinux 3 : sos-1.7-9.62.0.1.AXS3 (AXSA:2012-526:01)
The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-526:01 advisory. Sos is a set of tools that gathers information about system hardware and configuration. The information can then be used for diagnostic purposes and debugging...
Multiple Veritas Product Security Vulnerabilities
Veritas Infoscale and others are products of Veritas, Inc.Veritas Infoscale is a highly available virtualized storage software.Veritas Foundation For Windows is a backup, storage management software.Veritas Foundation HA For Veritas Foundation HA For Windows is a backup, storage management...
The vulnerability of the Veritas Access data storage system and its backup/restore software, Veritas NetBackup and Veritas NetBackup Appliance, is related to privilege division errors. This vulnerability allows an attacker to execute arbitrary commands on the NetBackup server or client with root/admin privileges.
The vulnerability of the Veritas Storage System and the software tools for backup and data recovery, such as Veritas NetBackup and Veritas NetBackup Appliance, is related to privilege division errors. Exploiting this vulnerability could allow an attacker to execute arbitrary commands on the...
Symantec Veritas Storage Foundation multiple security vulnerabilities
Multiple vulnerabilities on TCP/2148 request parsing...
ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability
ZDI-11-263: Symantec Veritas Storage Foundation vxsvc.exe ASCII String Unpacking Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-263 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec -- Affected...
ZDI-11-264: Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability
ZDI-11-264: Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-264 August 16, 2011 -- CVE ID: CVE-2011-0547 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: Symantec --...
Symantec Veritas Storage Foundation vxsvc.exe Value Unpacking Integer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation Administrator Service. Authentication is not required to exploit this vulnerability. The specific flaw exists within vxsvc.exe process. The problem affecting the...
Symantec Veritas Storage Foundation vxsvc.exe Unicode String Parsing Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the vxsvc.exe process. The problem affecting the part of the serve...
Symantec VERITAS Storage Foundation Administrator Service Buffer Overflow (CVE-2008-0638)
Symantec VERITAS Storage Foundation, provides a complete solution for heterogeneous online storage management. Storage Foundation Management Server allows centralized storage management capabilities across a broad array of operating systems and storage hardware. There exists a buffer overflow...
Symantec Veritas Storage Foundation unauthorized access
qioadmin utility allows local files read access. qiomkfile allows memory content reading...
SECOBJADV-2008-05: Symantec Veritas Storage Foundation Arbitrary File Read Vulnerability
====================================================================== = Security Objectives Advisory SECOBJADV-2008-05 = ====================================================================== Veritas Storage Foundation Arbitrary File Read Vulnerability...
Authentication flaw
The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...
CVE-2008-3703
The management console in the Volume Manager Scheduler Service aka VxSchedService.exe in Symantec Veritas Storage Foundation for Windows SFW 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote attackers to execute arbitrary code via requests to the service socket that...
SYM08-015_SFW_SecurityUpdateBypass
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Symantec Security Advisory SYM08-015 14 Aug, 2008 Veritas Storage Foundation for Windows Volume Manager Scheduler Service for Windows Security Update Circumvention Revision History None Severity Medium Remote Access Yes, network access required Loca...
VERITAS Storage Foundation NULL NTLMSSP Authentication Bypass (SYM08-015)
The version of the Scheduler Service component installed as part of Veritas Storage Foundation for Windows on the remote host allows NULL NTLMSSP authentication. If requests can be sent to the TCP service listening on port 4888, a remote attacker can leverage this issue to add, modify, or delete...
Symantec Veritas Storage Foundation Scheduler Service NULL Session Authentication Bypass Vulnerability
This vulnerability allows an attacker to execute arbitrary code on vulnerable installations of Symantec Veritas Storage Foundation. User interaction is not required to exploit this vulnerability. Authentication is not required to exploit this vulnerability. The specific flaw exists in the...
Veritas Storage Foundation Multiple Service Remote DoS (SYM08-004)
Veritas Storage Foundation, a storage management solution from Symantec is installed on the remote host. The installed version is reportedly affected by a denial of service vulnerability. By sending specially crafted IP packets to TCP port 4888, an unauthenticated attacker may be able to cause a...
Veritas Storage Foundation Administrator service buffer overflow
Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe , listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...
Veritas Storage Foundation Administrator service buffer overflow
Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe, listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...
Veritas Storage Foundation Administrator service buffer overflow
Added: 03/03/2008 CVE: CVE-2008-0638 BID: 25778 OSVDB: 41978 Background Veritas Storage Foundation is an online storage management solution. An Administrator service, implemented by vxsvc.exe, listens on port 3207 by default. Problem A buffer overflow vulnerability in the Administrator service...