Lucene search
This vulnerability was discovered by Kevin Finisterre with exploitation assistance from JohnH.ZDI-05-001HistoryOct 12, 2005 - 12:00 a.m.
VERITAS NetBackup Remote Code Execution
2005-10-1200:00:00
This vulnerability was discovered by Kevin Finisterre with exploitation assistance from JohnH.
www.zerodayinitiative.com
55
0.933 High
EPSS
Percentile
99.1%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable NetBackup installations. Authentication is not required to exploit this vulnerability. This specific flaw exists within the bpjava-msvc daemon due to incorrect handling of format string data passed through the ‘COMMAND_LOGON_TO_MSERVER’ command. The vulnerable daemon listens on TCP port 13722 and affects both NetBackup clients and servers.
Related
nessus
nessus
Solaris 8 (sparc) : 119006-01
2009-04-23 00:00:00
Solaris 8 (sparc) : 119007-01
2006-11-06 00:00:00
Solaris 8 (sparc) : 119005-02
2009-04-23 00:00:00
saint
saint
VERITAS NetBackup Java Administration Console format string vulnerability
2005-11-30 00:00:00
VERITAS NetBackup Java Administration Console format string vulnerability
2005-11-30 00:00:00
VERITAS NetBackup Java Administration Console format string vulnerability
2005-11-30 00:00:00
checkpoint_advisories
checkpoint_advisories
VERITAS NetBackup Java Authentication Service Format String (CVE-2005-2715)
2010-10-18 00:00:00
cve
cve
CVE-2005-2715
2005-10-12 22:02:00
securityvulns
securityvulns
VERITAS NetBackup: Java User-Interface, format string vulnerability
2005-10-13 00:00:00
ZDI-05-001: VERITAS NetBackup Remote Code Execution
2005-10-13 00:00:00
cvelist
cvelist
CVE-2005-2715
2005-10-12 04:00:00
nvd
nvd
CVE-2005-2715
2005-10-12 22:02:00
canvas
canvas
Immunity Canvas: NETBACKUP_JAVAUI
2005-10-12 22:02:00