Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability

Bugtraq ID: 37012
Class: Access Validation Error
CVE: CVE-2009-3027
Remote: Yes
Local: No
Published: Dec 09 2009 12:00AM
Updated: Jan 05 2010 04:12PM
Credit: An anonymous finder reported this through TippingPoint‚??s ZeroDay Initiative
Vulnerable: Symantec Veritas Storage Foundation for Windows High Availability 5.1AP1
Symantec Veritas Storage Foundation for Windows High Availability 5.1
Symantec Veritas Storage Foundation for Windows High Availability 5.0RP2
Symantec Veritas Storage Foundation for Windows High Availability 5.0RP1a
Symantec Veritas Storage Foundation for Windows High Availability 5.0
Symantec Veritas Storage Foundation for Windows High Availability 4.3MP2
Symantec Veritas Storage Foundation for Windows High Availability 4.3 MP2
Symantec Veritas Storage Foundation Cluster File System for Oracle RAC 5.0 (Linux)
Symantec Veritas Storage Foundation Cluster File System 5.0 (Solaris)
Symantec Veritas Storage Foundation Cluster File System 5.0 (Linux)
Symantec Veritas Storage Foundation Cluster File System 5.0 (HP-UX)
Symantec Veritas Storage Foundation Cluster File System 5.0 (AIX)
Symantec Veritas Storage Foundation Cluster File System 4.1
Symantec Veritas Storage Foundation Cluster File System 4.0
Symantec Veritas Storage Foundation Cluster File System 3.5 (HP-UX)
Symantec Veritas Storage Foundation 3.5
Symantec Veritas NetBackup Operations Manager 6.5 .5
Symantec Veritas NetBackup Operations Manager 6.0 GA
Symantec Veritas MicroMeasure 5.0
Symantec Veritas Command Central Storage Change Manager 5.0
Symantec Veritas Command Central Storage (CCS) 5.1
Symantec Veritas Command Central Storage (CCS) 5.0
Symantec Veritas Command Central Storage (CCS) 4.3
Symantec Veritas Command Central Enterprise Reporter 5.1
Symantec Veritas Command Central Enterprise Reporter 5.0 MP1 RP1
Symantec Veritas Command Central Enterprise Reporter 5.0 MP1
Symantec Veritas Command Central Enterprise Reporter 5.0 GA
Symantec Veritas Cluster Server One 2.0.2
Symantec Veritas Cluster Server One 2.0.1
Symantec Veritas Cluster Server One 2.0
Symantec Veritas Cluster Server Management Console 5.5.1
Symantec Veritas Cluster Server Management Console 5.5
Symantec Veritas Cluster Server Management Console 5.1
Symantec Veritas Cluster Server 4.1 (Solaris)
Symantec Veritas Cluster Server 4.1 (Linux)
Symantec Veritas Cluster Server 4.1 (HP-UX)
Symantec Veritas Cluster Server 4.0 (Linux)
Symantec Veritas Cluster Server 4.0 (AIX)
Symantec Veritas Cluster Server 3.5 (HP-UX)
Symantec Veritas Backup Reporter 6.6
Symantec Veritas Backup Reporter 6.0 GA
Symantec Veritas Application Director 1.1 Platform Expansi
Symantec Veritas Application Director 1.1
Symantec Storage Foundation Manager 2.0
Symantec Storage Foundation Manager 1.1.1Win
Symantec Storage Foundation Manager 1.1.1Ux
Symantec Storage Foundation Manager 1.1
Symantec Storage Foundation Manager 1.0 MP1
Symantec Storage Foundation Manager 1.0
Symantec Storage Foundation for Sybase 5.0
Symantec Storage Foundation for Sybase 4.1
Symantec Storage Foundation for Oracle Real Application Cluster 5.0 (Solaris)
Symantec Storage Foundation for Oracle Real Application Cluster 5.0 (HP-UX)
Symantec Storage Foundation for Oracle Real Application Cluster 5.0 (AIX)
Symantec Storage Foundation for Oracle Real Application Cluster 4.1 (Solaris)
Symantec Storage Foundation for Oracle Real Application Cluster 4.1 (HP-UX)
Symantec Storage Foundation for Oracle Real Application Cluster 4.0 (AIX)
Symantec Storage Foundation for Oracle Real Application Cluster 3.5 (HP-UX)
Symantec Storage Foundation for Oracle 5.0.1 (HP-UX)
Symantec Storage Foundation for Oracle 5.0 (Solaris)
Symantec Storage Foundation for Oracle 5.0 (Linux)
Symantec Storage Foundation for Oracle 5.0 (HP-UX)
Symantec Storage Foundation for Oracle 5.0 (AIX)
Symantec Storage Foundation for Oracle 4.1 (Solaris)
Symantec Storage Foundation for Oracle 4.1 (HP-UX)
Symantec Storage Foundation for High Availability 3.5
Symantec Storage Foundation for DB2 5.0 (Linux)
Symantec Storage Foundation for DB2 5.0 (AIX)
Symantec Storage Foundation for DB2 4.1 (Solaris)
Symantec Storage Foundation for DB2 4.1 (Linux)
Symantec Backup Exec Continuous Protection Server 12.5
Symantec Backup Exec Continuous Protection Server 12.0
Symantec Backup Exec Continuous Protection Server 11d
HP HP-UX B.11.31
HP HP-UX B.11.23
Not Vulnerable: Symantec Veritas Command Central Storage Change Manager 5.1.1
Symantec Veritas Command Central Storage (CCS) 5.1.1
Symantec Storage Foundation Manager 2.1


 

Privacy Statement
Copyright 2010, SecurityFocus