CyberSec.Space Logo
Back to CVE Browser

CVE-2005-1009

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1100%
EPSS Percentile20.38th
PublishedMay 2, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow (1) remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or (2) local users to execute arbitrary code via a long Name entry in the configure.cfg file.

Affected Platforms (CPE)

πŸ“¦
Bakbone

Netvault

= 7.0
πŸ“¦
Bakbone

Netvault

= 7.1

References & Advisories

πŸ”— http://secunia.com/advisories/14814
πŸ”— http://securitytracker.com/id?1013625
πŸ”— http://www.class101.org/netv-locsbof.pdf
πŸ”— http://www.class101.org/netv-remhbof.pdf
πŸ”— http://www.hat-squad.com/en/000164.html
πŸ”— http://www.hat-squad.com/en/000165.html
πŸ”— http://www.securityfocus.com/archive/1/394801
πŸ”— http://www.securityfocus.com/bid/12967

Related Vulnerabilities

CVE-2015-406710.0

Integer overflow in the libnv6 module in Dell NetVault Backup before 10.0.5 allows remote attackers to execute arbitrary code via ...

CVE-2007-391110.0

Multiple heap-based buffer overflows in (1) clsscheduler.exe (aka scheduler client) and (2) srvscheduler.exe (aka scheduler server...

CVE-2017-174149.8

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.1...

CVE-2017-174159.8

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.1...