October 2005
Symantec - Vulnerability in bpjava-msvc logon process within VERITAS NetBackup (Updated)
ID: 00939
Ref: 879/05
Date: 24 October 2005:16:41:43
Version: 1
Title: Symantec - Vulnerability in bpjava-msvc logon process within VERITAS NetBackup (Updated)
Abstract:
Vendors affected: Symantec Veritas
Applications affected: Symantec Veritas
Title
=====
Symantec - Vulnerability in bpjava-msvc logon process within VERITAS NetBackup (Updated)
Detail
======
Symantec have updated a document on their website, the full title of which is
"A vulnerability has recently been discovered, which affects the bpjava-msvc logon
process within VERITAS NetBackup (tm) 4.5, 5.0, 5.1, and 6.0 (including maintenance
and feature packs). This vulnerability could potentially allow remote malicious
users to execute arbitrary code."
According to Symantec, the document has been updated for the following reasons:
" -Exceptions listed for Windows environments
-Public exploits posted
-Additional *temporary workarounds identified
-Dependencies clarified "
The full document can be viewed at the following URL:
http://seer.support.veritas.com/docs/279085.htm