Vulnerabilities for Backup exec (...) - CXSECURITY.COM

Vulnerabilities for 'Backup exec'

2013-08-05

CVE-2013-4678

CWE-200

The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified vectors.

CVE-2013-4677

CWE-264

Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 uses weak permissions (Everyone: Read and Everyone: Change) for backup data files, which allows local users to obtain sensitive information or modify the outcome of a restore via direct access to these files.

CVE-2013-4676

CWE-79

Multiple cross-site scripting (XSS) vulnerabilities in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allow remote attackers to inject arbitrary web script or HTML via vectors involving a (1) custom-reports generation page, (2) Storage Devices creation page, or (3) jobs creation page in the management console; or (4) a Backup Exec server-management page in the beutility console.

CVE-2013-4575

Heap-based buffer overflow in the utility program in the Linux agent in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote attackers to cause a denial of service (agent crash) or possibly execute arbitrary code via unspecified vectors.

2011-05-31

CVE-2011-0546

Symantec Backup Exec 11.0, 12.0, 12.5, 13.0, and 13.0 R2 does not validate identity information sent between the media server and the remote agent, which allows man-in-the-middle attackers to execute NDMP commands via unspecified vectors.

>>> Vendor: Symantec 241 Products

Raptor firewall

Norton antivirus

Norton utilities

Enterprise firewall

Gateway security

Norton internet security

Norton personal firewall

Backup exec

Firewall vpn appliance 100

Firewall vpn appliance 200

Firewall vpn appliance 200r

Sygate personal firewall

Norton system works

Windows liveupdate

Clientless vpn gateway 4400

Gateway security 5400

Antivirus scan engine

Norton antispam

Gateway security 5300

Client firewall

Client security

Brightmail antispam

Nexland isb soho firewall appliance

Nexland pro100 firewall appliance

Nexland pro400 firewall appliance

Nexland pro800 firewall appliance

Nexland pro800turbo firewall appliance

Nexland wavebase firewall appliance

Gateway security 320

Gateway security 360

Gateway security 360r

Security check virus detection

Powerquest deploycenter

Sav filter domino nt ports

Sav filter for domino nt

Gateway security 460

Symav filter domino nt

Deployment solution

Netbackup enterprise server

Netbackup server

Antivirus scan engine for network attached storage

On command discovery

Gateway security 300

Gateway security 400

Gateway security 5000 series

Gateway security 5100

Gateway security 5310

Sygate management server

Ghost solutions suite

Security information manager

On-demand agent

On-demand protection

Enterprise security manager

Veritas netbackup client

Veritas netbackup enterprise server

Veritas netbackup server

Sygate network access control

Network access control

Automated support assistant

Livestate agent for windows

Symantec antivirus filtering +for domino

Mail security 8820 appliance

Veritas volume replicator

Veritas storage foundation

Backupexec system recovery

Livestate recovery

Norton save and recovery

Reporting server

Veritas backup exec

Altiris deployment solution

Mail security appliance

Backup exec for windows server

Symantec antivirus clearswift

Symantec antivirus filtering domino mpe

Symantec antivirus messaging

Symantec antivirus microsoft sharepoint

Symantec antivirus ms isa

Symantec antivirus network attached storage

See all Products for Vendor Symantec

Copyright 2024, cxsecurity.com