CVE-2017-8857
https://notcve.org/view.php?id=CVE-2017-8857
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated file copy and arbitrary remote command execution using the 'bprd' process. Veritas NetBackup 8.0 y anteriores y NetBackup Appliance 3.0 y anteriores están afectadas por una copia de archivos sin autenticación y ejecución de comandos de forma arbitraria a través del proceso 'bprd'. • http://www.securityfocus.com/bid/98384 https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue2 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVE-2017-8858
https://notcve.org/view.php?id=CVE-2017-8858
In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated privileged remote file write using the 'bprd' process. En Veritas NetBackup 8.0 y versiones anteriores y NetBackup Appliance 3.0 y anteriores, existe una escritura con privilegios remota de archivos no autenticada utilizando el proceso 'bprd'. • http://www.securityfocus.com/bid/98381 https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue3 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVE-2017-6404
https://notcve.org/view.php?id=CVE-2017-6404
An issue was discovered in Veritas NetBackup Before 7.7 and NetBackup Appliance Before 2.7. There are world-writable log files, allowing destruction or spoofing of log data. Se ha descubierto un problema en Veritas NetBackup en versiones anteriores a 7.7 y NetBackup Appliance en versiones anteriores a 2.7. Existen archivos de registro de escritura universal, permitiendo la destrucción o suplantación de datos de registro. • http://www.securityfocus.com/bid/96494 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue9 • CWE-276: Incorrect Default Permissions •
CVE-2017-6406
https://notcve.org/view.php?id=CVE-2017-6406
An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execution, using whitelist directory escape with "../" substrings, can occur. Se ha descubierto un problema en Veritas NetBackup en versiones anteriores a 7.7.2 y NetBackup Appliance en versiones anteriores a 2.7.2. Puede ocurrir la ejecución arbitraria de comandos privilegiados, usando el escape del directorio de lista blanca con subcadenas "../". • http://www.securityfocus.com/bid/96486 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue5 •
CVE-2017-6401
https://notcve.org/view.php?id=CVE-2017-6401
An issue was discovered in Veritas NetBackup before 8.0 and NetBackup Appliance before 3.0. Local arbitrary command execution can occur when using bpcd and bpnbat. Se ha descubierto un problema en Veritas NetBackup en versiones anteriores a 8.0 y NetBackup Appliance en versiones anteriores a 3.0. Puede ocurrir ejecución local arbitraria de comandos cuando se utiliza bpcd y bpnbat. • http://www.securityfocus.com/bid/96493 https://www.veritas.com/content/support/en_US/security/VTS17-003.html#Issue6 • CWE-269: Improper Privilege Management •