Remote Information Disclosure in Symantec Backup Exec
CVE-2013-4678

Currently unrated

Key Information:

Vendor: Symantec
Status: Backup Exec
Vendor: CVE Published:; 5 August 2013

Summary

The implementation of the NDMP protocol in specific versions of Symantec Backup Exec is vulnerable, allowing unauthorized remote authenticated users to access sensitive information regarding the host version. This weakness may lead to the exposure of critical information that can assist in further attacks or exploitation of the system.

References

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/61488

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 5, 2013