KLA10352
Multiple vulnerabilities in Symantec Backup Exec
Обновлено: 17/06/2019
Дата обнаружения
10/12/2008
Уровень угрозы
Critical
Описание

Multiple serious vulnerabilities have been found in Symantec Backup Exec. Malicious users can exploit these vulnerabilities to bypass auth, read / delete files, cause denial of service and possibly execute arbitrary code. Below is a complete list of vulnerabilities

  1. Vectors related to the remote-agent logon can be exploited remotely;
  2. A buffer overflow can be exploited locally.
Пораженные продукты

Symantec Backup Exec for Windows Servers version 11 builds 6235 and 7170
Symantec Backup Exec for Windows Servers version 12 build 1364
Symantec Backup Exec for Windows Servers version 12.5 build 2213

Решение

Update to latest version

Оказываемое влияние
?
ACE 
[?]

DoS 
[?]

SB 
[?]

WLF 
[?]

RLF 
[?]
Связанные продукты
VERITAS Backup Exec
CVE-IDS
CVE-2008-54089.0Critical
CVE-2008-54079.4Critical