CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-2611

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1260%
EPSS Percentile12.66th
Published2005年8月17日
Last Modified2026年4月16日

Vulnerability Description

VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare Media Server Option 4.5 through 5.1 uses a static password during authentication from the NDMP agent to the server, which allows remote attackers to read and write arbitrary files with the backup server.

Affected Platforms (CPE)

📦
Symantec Veritas

Backup Exec

= netware_servers_9.0.4019
📦
Symantec Veritas

Backup Exec

= netware_servers_9.0.4170
📦
Symantec Veritas

Backup Exec

= netware_servers_9.0.4172
📦
Symantec Veritas

Backup Exec

= netware_servers_9.0.4174
📦
Symantec Veritas

Backup Exec

= netware_servers_9.0.4202
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.306
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.307
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1067_.2
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1067_.3
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1127_.1
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1151_.1
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1152
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1152_.4
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1154
📦
Symantec Veritas

Backup Exec

= netware_servers_9.1.1156
📦
Symantec Veritas

Backup Exec

= windows_servers_8.6
📦
Symantec Veritas

Backup Exec

= windows_servers_9.0
📦
Symantec Veritas

Backup Exec

= windows_servers_9.0_rev._4367
📦
Symantec Veritas

Backup Exec

= windows_servers_9.0_rev._4367_sp1
📦
Symantec Veritas

Backup Exec

= windows_servers_9.0_rev._4454
📦
Symantec Veritas

Backup Exec

= windows_servers_9.0_rev._4454_sp1
📦
Symantec Veritas

Backup Exec

= windows_servers_9.1
📦
Symantec Veritas

Backup Exec

= windows_servers_9.1_rev._4691
📦
Symantec Veritas

Backup Exec

= windows_servers_9.1_rev._4691_sp2
📦
Symantec Veritas

Backup Exec

= windows_servers_10.0_rev._5484
📦
Symantec Veritas

Backup Exec

= windows_servers_10.0_rev._5484_sp1
📦
Symantec Veritas

Backup Exec

= windows_servers_10.0_rev._5520
📦
Symantec Veritas

Backup Exec Remote Agent

= netware_server
📦
Symantec Veritas

Backup Exec Remote Agent

= unix_linux_server
📦
Symantec Veritas

Backup Exec Remote Agent

= windows_server
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp1
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp2
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp3
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp4
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp5
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp6
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp7
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_fp8
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp1
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp2
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp3
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp4
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp5
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp6
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp7
📦
Symantec Veritas

Netbackup

= netware_media_servers_4.5_mp8
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.0
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.0_mp1
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.0_mp2
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.0_mp3
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.0_mp4
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.0_mp5
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.1
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.1_mp1
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.1_mp2
📦
Symantec Veritas

Netbackup

= netware_media_servers_5.1_mp3

References & Advisories

🔗 http://secunia.com/advisories/16403
🔗 http://securityresponse.symantec.com/avcenter/security/Content/2005.08.12b.html
🔗 http://securitytracker.com/id?1014662
🔗 http://www.kb.cert.org/vuls/id/378957
🔗 http://www.securityfocus.com/bid/14551
🔗 http://www.us-cert.gov/cas/techalerts/TA05-224A.html
🔗 http://www.vupen.com/english/advisories/2005/1387
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/21793

関連する脆弱性情報

CVE-2007-512610.0

Unspecified vulnerability in the client in Symantec Veritas Backup Exec for Windows Servers 11d has unknown impact and remote atta...

CVE-2004-117210.0

Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Ho...

CVE-2005-077110.0

VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the regis...

CVE-2008-045710.0

Unrestricted file upload vulnerability in the FileUpload class running on the Symantec LiveState Apache Tomcat server, as used by ...