KLA10352
Multiple vulnerabilities in Symantec Backup Exec
Updated: 06/17/2019
Detect date
?
12/10/2008
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Symantec Backup Exec. Malicious users can exploit these vulnerabilities to bypass auth, read / delete files, cause denial of service and possibly execute arbitrary code. Below is a complete list of vulnerabilities

  1. Vectors related to the remote-agent logon can be exploited remotely;
  2. A buffer overflow can be exploited locally.
Affected products

Symantec Backup Exec for Windows Servers version 11 builds 6235 and 7170
Symantec Backup Exec for Windows Servers version 12 build 1364
Symantec Backup Exec for Windows Servers version 12.5 build 2213

Solution

Update to latest version

Impacts
?
ACE 
[?]

DoS 
[?]

SB 
[?]

WLF 
[?]

RLF 
[?]
CVE-IDS
?
CVE-2008-54089.0Critical
CVE-2008-54079.4Critical