>> VERITAS NetBackup bpjava-msvc Remote Format String Vulnerability
Title : VERITAS NetBackup bpjava-msvc Remote Format String Vulnerability VUPEN ID : VUPEN/ADV-2005-2072 CVE ID : CVE-2005-2715
Rated as : Critical
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2005-10-12
Technical Description
A vulnerability has been identified in VERITAS NetBackup servers and clients, which could be exploited by remote attackers to execute arbitrary commands. This flaw is due to a format string error in the Java authentication service "bpjava-msvc" that does not properly handle a specially crafted "COMMAND_LOGON_TO_MSERVER" command (port 13722), which could be exploited by remote attackers to execute arbitrary commands with root/SYSTEM privileges.
This issue is resolved with the following special packs :
NetBackup DataCenter and NetBackup BusinesServer 4.5 Feature Pack track NB_45_9S1443_F
NetBackup DataCenter and NetBackup BusinesServer 4.5 Maintenance Pack track NB_45_9S1729_M
NetBackup Enterprise Server and NetBackup Server 5.0 NB_50_5S1320_M
NetBackup Enterprise Server and NetBackup Server 5.1 NB_51_3AS0949_M
NetBackup Entperprise Server and NetBackup Server 6.0 NB_60_3S0007_M References
Subscribe to VUPEN VNS and receive real-time e-mail and SMS alerts when new advisories or patches relevant to your systems and network configurations are available.
Feedback If you have additional information or corrections for this security advisory please submit them via our contact form.
