CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-1009

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1100%
EPSS Percentile20.38th
Published2005年5月2日
Last Modified2026年4月16日

Vulnerability Description

Multiple buffer overflows in BakBone NetVault 6.x and 7.x allow (1) remote attackers to execute arbitrary code via a modified computer name and length that leads to a heap-based buffer overflow, or (2) local users to execute arbitrary code via a long Name entry in the configure.cfg file.

Affected Platforms (CPE)

📦
Bakbone

Netvault

= 7.0
📦
Bakbone

Netvault

= 7.1

References & Advisories

🔗 http://secunia.com/advisories/14814
🔗 http://securitytracker.com/id?1013625
🔗 http://www.class101.org/netv-locsbof.pdf
🔗 http://www.class101.org/netv-remhbof.pdf
🔗 http://www.hat-squad.com/en/000164.html
🔗 http://www.hat-squad.com/en/000165.html
🔗 http://www.securityfocus.com/archive/1/394801
🔗 http://www.securityfocus.com/bid/12967

関連する脆弱性情報

CVE-2015-406710.0

Integer overflow in the libnv6 module in Dell NetVault Backup before 10.0.5 allows remote attackers to execute arbitrary code via ...

CVE-2007-391110.0

Multiple heap-based buffer overflows in (1) clsscheduler.exe (aka scheduler client) and (2) srvscheduler.exe (aka scheduler server...

CVE-2017-174149.8

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.1...

CVE-2017-174159.8

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.1...