CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1172

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0030%
EPSS Percentile25.37th
PublishedJan 10, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Hotfix 40, allows remote attackers to execute arbitrary code via a registration request with a long hostname.

Affected Platforms (CPE)

πŸ“¦
Symantec Veritas

Backup Exec

= 8.0
πŸ“¦
Symantec Veritas

Backup Exec

= 8.5
πŸ“¦
Symantec Veritas

Backup Exec

= 8.6
πŸ“¦
Symantec Veritas

Backup Exec

= 9.0
πŸ“¦
Symantec Veritas

Backup Exec

= 9.1

References & Advisories

πŸ”— http://secunia.com/advisories/13495/
πŸ”— http://seer.support.veritas.com/docs/273419.htm
πŸ”— http://seer.support.veritas.com/docs/273420.htm
πŸ”— http://seer.support.veritas.com/docs/273422.htm
πŸ”— http://seer.support.veritas.com/docs/273850.htm
πŸ”— http://www.frsirt.com/exploits/20050111.101_BXEC.cpp.php
πŸ”— http://www.idefense.com/application/poi/display?id=169
πŸ”— http://www.kb.cert.org/vuls/id/907729

Related Vulnerabilities

CVE-2007-512610.0

Unspecified vulnerability in the client in Symantec Veritas Backup Exec for Windows Servers 11d has unknown impact and remote atta...

CVE-2005-077110.0

VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the regis...

CVE-2005-261110.0

VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare M...

CVE-2008-045710.0

Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by ...