Remote Code Execution Vulnerability in Symantec Veritas NetBackup Server vnetd
CVE-2009-0651

Currently unrated

Key Information:

Vendor: Symantec
Status: Veritas Netbackup Server \/enterprise Server
Vendor: CVE Published:; 20 February 2009

Summary

A remote code execution vulnerability exists in the Veritas network daemon, vnetd, of Symantec's NetBackup Server and Enterprise Server. This issue arises due to unspecified vectors related to the initial communications setup, allowing remote attackers to execute arbitrary code on affected systems. Systems running versions prior to MP7 SP1 of 6.0 and versions prior to 6.5.3.1 of 6.5 are particularly vulnerable. Administrators are urged to apply security patches promptly to mitigate risks associated with this vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/48795

vdb-entryx_refsource_XF

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

http://www.vupen.com/english/advisories/2009/1097

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Feb 20, 2009
Vulnerability Reserved
Feb 20, 2009