CVSS: 5.9EPSS: 0%CPEs: 37EXPL: 0CVE-2015-6551
https://notcve.org/view.php?id=CVE-2015-6551
07 May 2016 — Veritas NetBackup 7.x through 7.5.0.7 and 7.6.0.x through 7.6.0.4 and NetBackup Appliance through 2.5.4 and 2.6.0.x through 2.6.0.4 do not use TLS for administration-console traffic to the NBU server, which allows remote attackers to obtain sensitive information by sniffing the network for key-exchange packets. Veritas NetBackup 7.x hasta la versión 7.5.0.7 y 7.6.0.x hasta la versión 7.6.0.4 y NetBackup Appliance hasta la versión 2.5.4 y 2.6.0.x hasta la versión 2.6.0.4 no utilizan TLS para el tráfico de la... • http://www.securitytracker.com/id/1035704 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 2%CPEs: 37EXPL: 0CVE-2015-6552
https://notcve.org/view.php?id=CVE-2015-6552
07 May 2016 — The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, and 2.7.x before 2.7.2 allows remote attackers to make arbitrary RPC calls via unspecified vectors. La implementación del protocolo management-services en Veritas NetBackup 7.x hasta la versión 7.5.0.7, 7.6.0.x hasta la versión 7.6.0.4, 7.6.1.x hasta la versió... • http://www.securitytracker.com/id/1035704 • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0CVE-2007-4516
https://notcve.org/view.php?id=CVE-2007-4516
21 Feb 2008 — The Volume Manager Scheduler Service (aka VxSchedService.exe) in Symantec Veritas Storage Foundation 5.0 for Windows allows remote attackers to cause a denial of service (daemon crash or hang) via malformed packets. Volume Manager Scheduler Service (también conocido como VxSchedService.exe) de Symantec Veritas Storage Foundation 5.0 para Windows permite a atacantes remotos provocar una denegación de servicio (cuelgue o caída del demonio) a través de paquetes malformados. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=665 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 0CVE-2006-4228
https://notcve.org/view.php?id=CVE-2006-4228
18 Aug 2006 — Symantec Veritas NetBackup PureDisk Remote Office Edition 6.0 before MP1 20060816 allows remote attackers to bypass authentication and gain privileges via unknown attack vectors in the management interface. Symantec Veritas NetBackup PureDisk Remote Office Edition 6.0 anterior a MP1 16/08/2006 permite a atacantes remotos evitar la autenticación y obtener privilegios mediante vectores de ataque desconocidos en la interfaz de administración. • http://secunia.com/advisories/21507 •
CVSS: 9.8EPSS: 18%CPEs: 13EXPL: 0CVE-2006-4128
https://notcve.org/view.php?id=CVE-2006-4128
14 Aug 2006 — Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and 10.1.327.401), and Backup Exec for Windows Server and Remote Agent 9.1 (build 9.1.4691), 10.0 (builds 10.0.5484 and 10.0.5520), and 10.1 (build 10.1.5629) allow remote attackers to cause a denial of service (applicat... • http://secunia.com/advisories/21472 •
CVSS: 9.8EPSS: 29%CPEs: 10EXPL: 0CVE-2006-0991
https://notcve.org/view.php?id=CVE-2006-0991
28 Mar 2006 — Buffer overflow in the NetBackup Sharepoint Services server daemon (bpspsserver) on NetBackup 6.0 for Windows allows remote attackers to execute arbitrary code via crafted "Request Service" packets to the vnetd service (TCP port 13724). • http://secunia.com/advisories/19417 •
CVSS: 9.8EPSS: 15%CPEs: 10EXPL: 0CVE-2006-0989 – Symantec VERITAS NetBackup Volume Manager Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2006-0989
27 Mar 2006 — Stack-based buffer overflow in the volume manager daemon (vmd) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCenter and BusinesServer 4.5FP and 4.5MP allows attackers to execute arbitrary code via unknown vectors. This vulnerability allows remote attackers to execute arbitrary code on vulnerable Symantec VERITAS NetBackup installations. Authentication is not required to exploit this vulnerability. This specific flaw exists within the volume manager daemon (vmd.exe) due to incorrect bounds c... • http://securityreason.com/securityalert/639 •
CVSS: 9.8EPSS: 15%CPEs: 10EXPL: 0CVE-2006-0990 – Symantec VERITAS NetBackup Database Manager Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2006-0990
27 Mar 2006 — Stack-based buffer overflow in the NetBackup Catalog daemon (bpdbm) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCenter and BusinesServer 4.5FP and 4.5MP allows attackers to execute arbitrary code via unknown vectors. This vulnerability allows remote attackers to execute arbitrary code on vulnerable Symantec VERITAS NetBackup installations. Authentication is not required to exploit this vulnerability. The specific flaw exists within the NetBackup Database Manager service (bpdbm.exe) due to... • http://secunia.com/advisories/19417 •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2006-1297
https://notcve.org/view.php?id=CVE-2006-1297
19 Mar 2006 — Unspecified vulnerability in Veritas Backup Exec for Windows Server Remote Agent 9.1 through 10.1, for Netware Servers and Remote Agent 9.1 and 9.2, and Remote Agent for Linux Servers 10.0 and 10.1 allow attackers to cause a denial of service (application crash or unavailability) due to "memory errors." • http://secunia.com/advisories/19242 •
CVSS: 7.8EPSS: 2%CPEs: 2EXPL: 0CVE-2006-1298
https://notcve.org/view.php?id=CVE-2006-1298
19 Mar 2006 — Format string vulnerability in the Job Engine service (bengine.exe) in the Media Server in Veritas Backup Exec 10d (10.1) for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows Servers rev. 4691, when the job log mode is Full Detailed (aka Full Details), allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via a crafted filename on a machine that is backed up ... • http://secunia.com/advisories/19242 •