CVE-2017-6403
https://notcve.org/view.php?id=CVE-2017-6403
An issue was discovered in Veritas NetBackup Before 8.0 and NetBackup Appliance Before 3.0. NetBackup Cloud Storage Service uses a hardcoded username and password. Se ha descubierto un problema en Veritas NetBackup en versiones anteriores a 8.0 y NetBackup Appliance en versiones anteriores a 3.0. NetBackup Cloud Storage Service utiliza un nombre de usuario y contraseña codificados. • http://www.securityfocus.com/bid/96500 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue10 • CWE-798: Use of Hard-coded Credentials •
CVE-2017-6406
https://notcve.org/view.php?id=CVE-2017-6406
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execution, using whitelist directory escape with "../" substrings, can occur. Se ha descubierto un problema en Veritas NetBackup en versiones anteriores a 7.7.2 y NetBackup Appliance en versiones anteriores a 2.7.2. Puede ocurrir la ejecución arbitraria de comandos privilegiados, usando el escape del directorio de lista blanca con subcadenas "../". • http://www.securityfocus.com/bid/96486 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue5 •
CVE-2017-6402
https://notcve.org/view.php?id=CVE-2017-6402
An issue was discovered in Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier. Denial of service affecting NetBackup server can occur. Se ha descubierto un problema en Veritas NetBackup 8.0 y versiones anteriores y NetBackup Appliance 3.0 y versiones anteriores. Puede ocurrir la denegación de servicio que afecte al servidor NetBackup. • http://www.securityfocus.com/bid/96485 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue3 •
CVE-2017-6401
https://notcve.org/view.php?id=CVE-2017-6401
An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can occur when using bpcd and bpnbat. Se ha descubierto un problema en Veritas NetBackup en versiones anteriores a 8.0 y NetBackup Appliance en versiones anteriores a 3.0. Puede ocurrir ejecución local arbitraria de comandos cuando se utiliza bpcd y bpnbat. • http://www.securityfocus.com/bid/96493 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue6 • CWE-269: Improper Privilege Management •
CVE-2004-1389 – Veritas NetBackup - Remote Command Execution
https://notcve.org/view.php?id=CVE-2004-1389
Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5, DataCenter 3.4, 3.4.1, and 4.5, Enterprise Server 5.1, and NetBackup Server 5.0 and 5.1, allows attackers to execute arbitrary commands via the bpjava-susvc process, possibly related to the call-back feature. • https://www.exploit-db.com/exploits/9941 http://secunia.com/advisories/12901 http://seer.support.veritas.com/docs/271727.htm http://www.ciac.org/ciac/bulletins/p-020.shtml http://www.kb.cert.org/vuls/id/685456 http://www.securityfocus.com/bid/11494 https://exchange.xforce.ibmcloud.com/vulnerabilities/17811 •