Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5407

Overview

Vulnerability Score 9.4 9.4
CVE Id CVE-2008-5407
Last Modified 07 Mar 2011 10:14:32
Published 10 Dec 2008 01:44:42
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5407

Summary

Multiple unspecified vulnerabilities in the Backup Exec remote-agent logon process in Symantec Backup Exec for Windows Servers 11.0 (aka 11d) builds 6235 and 7170, 12.0 build 1364, and 12.5 build 2213 allow remote attackers to bypass authentication, and read or delete files, via unknown vectors.

Vulnerable Systems

Application

  • Symantec Backup Exec For Windows Server 11d

  • Symantec Backup Exec For Windows Server 12.0

  • Symantec Backup Exec For Windows Server 12.5


References

CONFIRM - http://seer.entsupport.symantec.com/docs/314528.htm

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2008.11.19.html

SECUNIA - 32810

XF - backupexec-remoteagent-security-bypass(46730)

VUPEN - ADV-2008-3209

SECTRACK - 1021246

BID - 32347


Last Updated: 27 May 2016 10:48:48