Short Name |
APP:VERITAS:NETBCKP-CMD-EXEC |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Veritas NetBackup Remote Command Execution |
Release Date |
2009/11/05 |
Update Number |
1539 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Veritas NetBackup, which allows arbitrary command execution on an ephemeral port opened by Veritas NetBackup, at the same time an administrator is authenticated. The port is opened and allows direct console access as root or SYSTEM from any source address. A successful attack can lead to arbitrary code execution.
Veritas NetBackup is reported prone to a privilege escalation vulnerability. This issue may allow remote attackers to gain elevated privileges on a vulnerable computer. An attacker can supply specially crafted commands to the server, which execute with superuser privileges.