Symantec Backup Exec Scheduler ActiveX Control Multiple Arbitrary File Overwrite Vulnerabilities

Bugtraq ID: 28008
Class: Input Validation Error
CVE: CVE-2007-6017
Remote: Yes
Local: No
Published: Feb 28 2008 12:00AM
Updated: Sep 25 2008 12:29AM
Credit: JJ Reyes of Secunia Research is credited with the discovery of these issues.
Vulnerable: Symantec Veritas NetBackup Server 6.5
Symantec Veritas NetBackup Server 6.0
Symantec Veritas NetBackup Server 5.1
Symantec Veritas NetBackup Enterprise Server 6.5
Symantec Veritas NetBackup Enterprise Server 6.0
Symantec Veritas NetBackup Enterprise Server 5.1
Symantec Backup Exec for Windows Servers 12.0
Symantec Backup Exec for Windows Servers 11d
Not Vulnerable: Symantec Veritas NetBackup Server 6.5.2
Symantec Veritas NetBackup Server 6.0 MP7
Symantec Veritas NetBackup Server 5.1 MP7
Symantec Veritas NetBackup Enterprise Server 6.5.2
Symantec Veritas NetBackup Enterprise Server 6.0 MP7
Symantec Veritas NetBackup Enterprise Server 5.1 MP7


 

Privacy Statement
Copyright 2010, SecurityFocus