Description
Multiple serious vulnerabilities have been found in Symantec Backup Exec. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, read-write backup files, inject scripts and execute arbitrary code Below is a complete list of vulnerabilities
- Vectors related to NDMP protocol can be exploited remotely;
- Weak file permissions can be exploited locally via file modification;
- XSS vulnerabilities can be exploited remotely via vectors related to web interface;
- A buffer overflow can be exploited remotely via unspecified vectors.
Original advisories
Related products
CVE list
- CVE-2013-4678 warning
- CVE-2013-4676 warning
- CVE-2013-4677 warning
- CVE-2013-4575 critical
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!