CVE-2009-0651

Published Feb 20, 2009

Last updated 8 years ago

CVSS info 6.5

Overview

Description: Unspecified vulnerability in the Veritas network daemon (aka vnetd) in Symantec Veritas NetBackup Server / Enterprise Server 5.x, 6.0 before MP7 SP1, and 6.5 before 6.5.3.1 allows remote attackers to execute arbitrary code via unknown vectors related to "initial communications setup."
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14E0B342-8B4E-4E5F-842D-920C4548F20F",
            "versionEndIncluding": "5.1mp7"
          },
          {
            "criteria": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "10A86601-C514-4704-AB13-4FE761D31F73",
            "versionEndIncluding": "6.0mp7"
          },
          {
            "criteria": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AF64488-A905-4B3C-AAB2-48286D49B98F",
            "versionEndIncluding": "6.5.2"
          },
          {
            "criteria": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A665E030-ACF2-46F3-8C91-DEC109BEF062"
          },
          {
            "criteria": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F3C740C-0C65-4E83-B5F0-CB9A6A74E2FC"
          },
          {
            "criteria": "cpe:2.3:a:symantec:veritas_netbackup_server_\\/enterprise_server:6.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F574AF2F-7336-4BA4-946D-C58DD225DA72"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References