VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
References
Link | Resource |
---|---|
http://secunia.com/advisories/15789 | Broken Link |
http://securitytracker.com/id?1014273 | Broken Link Third Party Advisory VDB Entry |
http://seer.support.veritas.com/docs/276533.htm | Broken Link |
http://seer.support.veritas.com/docs/277485.htm | Broken Link |
http://www.idefense.com/application/poi/display?id=270&type=vulnerabilities&flashstatus=true | Broken Link Vendor Advisory |
http://www.idefense.com/application/poi/display?id=271&type=vulnerabilities | Broken Link |
Configurations
Configuration 1 (hide)
|
History
28 Dec 2023, 15:29
Type | Values Removed | Values Added |
---|---|---|
References | (IDEFENSE) http://www.idefense.com/application/poi/display?id=270&type=vulnerabilities&flashstatus=true - Broken Link, Vendor Advisory | |
References | (SECUNIA) http://secunia.com/advisories/15789 - Broken Link | |
References | (IDEFENSE) http://www.idefense.com/application/poi/display?id=271&type=vulnerabilities - Broken Link | |
References | (SECTRACK) http://securitytracker.com/id?1014273 - Broken Link, Third Party Advisory, VDB Entry | |
References | (CONFIRM) http://seer.support.veritas.com/docs/277485.htm - Broken Link | |
References | (CONFIRM) http://seer.support.veritas.com/docs/276533.htm - Broken Link | |
First Time |
Veritas backup Exec
Veritas |
|
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
CWE | CWE-476 | |
CPE | cpe:2.3:a:symantec_veritas:backup_exec:10.0_sp1:*:*:*:*:*:*:* |
cpe:2.3:a:veritas:backup_exec:*:*:*:*:*:netware:*:* cpe:2.3:a:veritas:backup_exec:*:*:*:*:*:windows_server:*:* |
Information
Published : 2005-06-28 04:00
Updated : 2024-02-28 10:42
NVD link : CVE-2005-0772
Mitre link : CVE-2005-0772
CVE.ORG link : CVE-2005-0772
JSON object : View
Products Affected
veritas
- backup_exec
CWE
CWE-476
NULL Pointer Dereference