CVE-2008-4339
Severity Score
6.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in the Java Administration GUI (jnbSA) in Symantec Veritas NetBackup Server and NetBackup Enterprise Server 5.1 before MP7, 6.0 before MP7, and 6.5 before 6.5.2 allows remote authenticated users to gain privileges via unknown attack vectors related to "bpjava* binaries."
Vulnerabilidad no especificada en Java Administration GUI (jnbSA) de Symantec Veritas NetBackup Server y NetBackup Enterprise Server v5.1 antes de MP7, v6.0 antes de MP7, y v6.5 antes de v6.5.2 permite a usuarios autenticados obtener privilegios a través de vectores de ataque desconocidos relacionados a "binarios bpjava*"
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-09-30 CVE Reserved
- 2008-09-30 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-06 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/31221 | Vdb Entry | |
| http://www.securitytracker.com/id?1020928 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2008/2672 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/45386 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.symantec.com/avcenter/security/Content/2008.09.24a.html | 2017-08-08 |
| URL | Date | SRC |
|---|---|---|
| http://sunsolve.sun.com/search/document.do?assetkey=1-26-239908-1 | 2017-08-08 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Symantec Search vendor "Symantec" | Netbackup Enterprise Server Search vendor "Symantec" for product "Netbackup Enterprise Server" | 5.1 Search vendor "Symantec" for product "Netbackup Enterprise Server" and version "5.1" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Netbackup Enterprise Server Search vendor "Symantec" for product "Netbackup Enterprise Server" | 6.0 Search vendor "Symantec" for product "Netbackup Enterprise Server" and version "6.0" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Netbackup Enterprise Server Search vendor "Symantec" for product "Netbackup Enterprise Server" | 6.5 Search vendor "Symantec" for product "Netbackup Enterprise Server" and version "6.5" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Netbackup Server Search vendor "Symantec" for product "Netbackup Server" | 5.1 Search vendor "Symantec" for product "Netbackup Server" and version "5.1" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Netbackup Server Search vendor "Symantec" for product "Netbackup Server" | 6.0 Search vendor "Symantec" for product "Netbackup Server" and version "6.0" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Netbackup Server Search vendor "Symantec" for product "Netbackup Server" | 6.5 Search vendor "Symantec" for product "Netbackup Server" and version "6.5" | - |
Affected
| ||||||