CVSS: 10.0EPSS: 55%CPEs: 9EXPL: 3CVE-2005-3116 – Veritas NetBackup 4/5 - Volume Manager Daemon Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-3116
18 Nov 2005 — Stack-based buffer overflow in a shared library as used by the Volume Manager daemon (vmd) in VERITAS NetBackup Enterprise Server 5.0 MP1 to MP5 and 5.1 up to MP3A allows remote attackers to execute arbitrary code via a crafted packet. • https://www.exploit-db.com/exploits/1421 •
CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 2CVE-2005-3566 – Veritas Storage Foundation 4.0 - VCSI18N_LANG Local Overflow
https://notcve.org/view.php?id=CVE-2005-3566
16 Nov 2005 — Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew. • https://www.exploit-db.com/exploits/1316 •
CVSS: 10.0EPSS: 66%CPEs: 5EXPL: 4CVE-2005-2715 – VERITAS NetBackup Remote Code Execution
https://notcve.org/view.php?id=CVE-2005-2715
12 Oct 2005 — Format string vulnerability in the Java user interface service (bpjava-msvc) daemon for VERITAS NetBackup Data and Business Center 4.5FP and 4.5MP, and NetBackup Enterprise/Server/Client 5.0, 5.1, and 6.0, allows remote attackers to execute arbitrary code via the COMMAND_LOGON_TO_MSERVER command. This vulnerability allows remote attackers to execute arbitrary code on vulnerable NetBackup installations. Authentication is not required to exploit this vulnerability. This specific flaw exists within the bpjava-... • https://www.exploit-db.com/exploits/1263 •
CVSS: 9.8EPSS: 11%CPEs: 2EXPL: 1CVE-2005-2996
https://notcve.org/view.php?id=CVE-2005-2996
20 Sep 2005 — Multiple heap-based and stack-based buffer overflows in certain DCOM server components in VERITAS Storage Exec Storage Exec 5.3 before Hotfix 9 and StorageCentral 5.2 before Hot Fix 2 allow remote attackers to execute arbitrary code via certain ActiveX controls. • http://secunia.com/advisories/16871 •
CVSS: 10.0EPSS: 80%CPEs: 57EXPL: 4CVE-2005-2611 – Veritas Backup Exec (Windows) - Remote File Access
https://notcve.org/view.php?id=CVE-2005-2611
17 Aug 2005 — VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write arbitrary files with the backup server. • https://packetstorm.news/files/id/180901 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2005-2389
https://notcve.org/view.php?id=CVE-2005-2389
27 Jul 2005 — NDMP server in Veritas NetBackup 5.1 allows attackers to cause a denial of service via a CONFIG message with an out-of-range timestamp, which triggers a null dereference. NDMP server en Veritas NetBackup 5.1 permite que atacantes causen una denegación de servicio mediante un mensaje CONFIG con fecha fuera de rango, lo que provoca intento de acceso a puntero nulo. • http://secunia.com/advisories/16187 •
CVSS: 9.8EPSS: 10%CPEs: 4EXPL: 0CVE-2005-2079
https://notcve.org/view.php?id=CVE-2005-2079
29 Jun 2005 — Heap-based buffer overflow in the Admin Plus Pack Option for VERITAS Backup Exec 9.0 through 10.0 for Windows Servers allows remote attackers to execute arbitrary code. Desbordamiento de búfer en Admin Plus Pack Option for VERITAS Backup Exec 9.0 hasta 10.0 para Windows Servers permite que atacantes remotos ejecuten código arbitrario. • http://secunia.com/advisories/15789 •
CVSS: 9.8EPSS: 0%CPEs: 17EXPL: 0CVE-2005-2080
https://notcve.org/view.php?id=CVE-2005-2080
29 Jun 2005 — Unknown vulnerability in Remote Agent for Windows Servers (RAWS) in VERITAS Backup Exec 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for NetWare, allows remote attackers to gain privileges by copying the handle for the server. • http://secunia.com/advisories/15789 •
CVSS: 9.8EPSS: 4%CPEs: 7EXPL: 0CVE-2005-2051
https://notcve.org/view.php?id=CVE-2005-2051
26 Jun 2005 — Buffer overflow in the VERITAS Backup Exec Web Administration Console (BEWAC) 9.0 4367 through 10.0 rev. 5484 allows remote attackers to execute arbitrary code. • http://marc.info/?l=bugtraq&m=111954711532252&w=2 •
CVSS: 7.5EPSS: 11%CPEs: 2EXPL: 0CVE-2005-0772
https://notcve.org/view.php?id=CVE-2005-0772
26 Jun 2005 — VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference. • http://secunia.com/advisories/15789 • CWE-476: NULL Pointer Dereference •