Symantec Veritas » Backup Exec : Security Vulnerabilities, CVEs, Published In 2005 CVSS score >= 1

CVE-2005-2611

Public exploit
VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write arbitrary files with the backup server.
Max CVSS
10.0
EPSS Score
97.33%
Published
2005-08-17
Updated
2017-07-11

CVE-2005-2080

Unknown vulnerability in Remote Agent for Windows Servers (RAWS) in VERITAS Backup Exec 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for NetWare, allows remote attackers to gain privileges by copying the handle for the server.
Max CVSS
7.5
EPSS Score
1.23%
Published
2005-06-29
Updated
2008-09-05

CVE-2005-2079

Heap-based buffer overflow in the Admin Plus Pack Option for VERITAS Backup Exec 9.0 through 10.0 for Windows Servers allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
8.73%
Published
2005-08-02
Updated
2008-09-05

CVE-2005-2051

Buffer overflow in the VERITAS Backup Exec Web Administration Console (BEWAC) 9.0 4367 through 10.0 rev. 5484 allows remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
5.98%
Published
2005-06-28
Updated
2016-10-18

CVE-2005-0773

Public exploit
Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECT_CLIENT_AUTH request with authentication method type 3 (Windows credentials) and a long password argument.
Max CVSS
7.5
EPSS Score
96.55%
Published
2005-06-18
Updated
2011-03-08

CVE-2005-0772

VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
Max CVSS
7.5
EPSS Score
18.33%
Published
2005-06-28
Updated
2023-12-28

CVE-2005-0771

Public exploit
VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106.
Max CVSS
10.0
EPSS Score
96.86%
Published
2005-06-23
Updated
2011-03-08

CVE-2004-1172

Public exploit
Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Hotfix 40, allows remote attackers to execute arbitrary code via a registration request with a long hostname.
Max CVSS
10.0
EPSS Score
95.03%
Published
2005-01-10
Updated
2017-07-11
8 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close