Vulnerability Details : CVE-2005-0358
EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.
Products affected by CVE-2005-0358
- cpe:2.3:a:sun:solstice_backup:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:solstice_backup:6.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:storedge_enterprise_backup_software:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:sun:storedge_enterprise_backup_software:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:sun:storedge_enterprise_backup_software:7.2:*:*:*:*:*:*:*
- cpe:2.3:a:emc:legato_networker:4.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:emc:legato_networker:7.13:*:*:*:*:*:*:*
- cpe:2.3:a:emc:legato_networker:7.2:*:*:*:*:*:*:*
- cpe:2.3:a:emc:legato_networker:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:emc:legato_networker:6.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-0358
3.26%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-0358
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2005-0358
-
http://www.securityfocus.com/bid/14582
Patch;Vendor Advisory
-
http://securitytracker.com/id?1014713
Patch
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/21892
-
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1
Patch;Vendor Advisory
-
http://www.kb.cert.org/vuls/id/407641
Patch;Third Party Advisory;US Government Resource
-
http://www.legato.com/support/websupport/product_alerts/081605_NW_token_authentication.htm
Jump to