CVE-2005-2051
https://notcve.org/view.php?id=CVE-2005-2051
Buffer overflow in the VERITAS Backup Exec Web Administration Console (BEWAC) 9.0 4367 through 10.0 rev. 5484 allows remote attackers to execute arbitrary code. • http://marc.info/?l=bugtraq&m=111954711532252&w=2 http://secunia.com/advisories/15789 http://seer.support.veritas.com/docs/276606.htm http://www.ciac.org/ciac/bulletins/p-232.shtml http://www.securityfocus.com/bid/14025 •
CVE-2005-0772
https://notcve.org/view.php?id=CVE-2005-0772
VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference. • http://secunia.com/advisories/15789 http://securitytracker.com/id?1014273 http://seer.support.veritas.com/docs/276533.htm http://seer.support.veritas.com/docs/277485.htm http://www.idefense.com/application/poi/display?id=270&type=vulnerabilities&flashstatus=true http://www.idefense.com/application/poi/display?id=271&type=vulnerabilities • CWE-476: NULL Pointer Dereference •
CVE-2005-0771 – Veritas Backup Exec Server Registry Access
https://notcve.org/view.php?id=CVE-2005-0771
VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106. • http://secunia.com/advisories/15789 http://securitytracker.com/id?1014273 http://seer.support.veritas.com/docs/276605.htm http://seer.support.veritas.com/docs/277429.htm http://www.idefense.com/application/poi/display?id=269&type=vulnerabilities&flashstatus=true http://www.kb.cert.org/vuls/id/584505 http://www.us-cert.gov/cas/techalerts/TA05-180A.html •
CVE-2005-0773 – Veritas Backup Exec Windows - Remote Agent Overflow
https://notcve.org/view.php?id=CVE-2005-0773
Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECT_CLIENT_AUTH request with authentication method type 3 (Windows credentials) and a long password argument. • https://www.exploit-db.com/exploits/16332 http://secunia.com/advisories/15789 http://securitytracker.com/id?1014273 http://seer.support.veritas.com/docs/276604.htm http://seer.support.veritas.com/docs/277429.htm http://www.idefense.com/application/poi/display?id=272&type=vulnerabilities&flashstatus=true http://www.kb.cert.org/vuls/id/492105 http://www.osvdb.org/17624 http://www.securityfocus.com/bid/14022 http://www.us-cert.gov/cas/techalerts/TA05-180A.html •