Vulnerability Name:

CVE-2005-0772 (CCN-21105)

Assigned:2005-06-22
Published:2005-06-22
Updated:2011-03-08
Summary:VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2005-0772

Source: CCN
Type: SA15789
VERITAS Backup Exec Multiple Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
15789

Source: CCN
Type: SECTRACK ID: 1014273
Veritas Backup Exec Bugs Let Remote Users Execute Arbitrary Code, Crash the System, and Modify the Registry

Source: SECTRACK
Type: UNKNOWN
1014273

Source: CONFIRM
Type: UNKNOWN
http://seer.support.veritas.com/docs/276533.htm

Source: CCN
Type: Veritas Document ID: 277485
Denial of Service (DoS) in VERITAS NetBackup (tm) for NetWare Media Servers

Source: CONFIRM
Type: UNKNOWN
http://seer.support.veritas.com/docs/277485.htm

Source: IDEFENSE
Type: Vendor Advisory
20050623 Veritas Backup Exec Remote Agent NDMLSRVR.DLL DoS Vulnerability

Source: IDEFENSE
Type: UNKNOWN
20050623 Veritas Backup Exec Agent Error Status Remote DoS Vulnerability

Source: CCN
Type: BID-14019
Veritas Backup Exec/NetBackup Request Packet Denial Of Service Vulnerability

Source: CCN
Type: BID-14021
Veritas Backup Exec Remote Agent Null Pointer Dereference Denial Of Service Vulnerability

Source: CCN
Type: Veritas NetBackup Web page
NetBackup™ Server

Source: XF
Type: UNKNOWN
Netbackup-dos(21105)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:symantec_veritas:backup_exec:10.0:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:10.0_sp1:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:novell:netware:6.5:*:*:*:*:*:*:*
  • OR cpe:/a:symantec:veritas_netbackup_server:-:*:*:*:*:*:*:*
  • AND
  • cpe:/o:novell:netware:5.1:*:*:*:*:*:*:*
  • OR cpe:/o:novell:netware:6.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2005-0772 (CCN-21108)

    Assigned:2005-06-22
    Published:2005-06-22
    Updated:2005-06-22
    Summary:VERITAS Backup Exec is a backup and recovery software solution for Microsoft Windows and Unix-based operating systems. Multiple versions of VERITAS Backup Exec running on Microsoft Windows and Novell NetWare Servers are vulnerable to a denial of service attack caused by a buffer overflow. The VERITAS Backup Exec Remote Agent fails to properly handle request packets containing a status value. A remote attacker could exploit this vulnerability to overflow a buffer and cause the system to crash.

    Note: This vulnerability does not allow execution of code on the system. See References.
    CVSS v3 Severity:7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): Low
    Privileges Required (PR): None
    User Interaction (UI): None
    Scope:Scope (S): Unchanged
    Impact Metrics:Confidentiality (C): None
    Integrity (I): None
    Availibility (A): High
    CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Low
    Authentication (Au): None
    Impact Metrics:Confidentiality (C): None
    Integrity (I): None
    Availibility (A): Partial
    7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Low
    Athentication (Au): None
    Impact Metrics:Confidentiality (C): None
    Integrity (I): None
    Availibility (A): Complete
    Vulnerability Consequences:Denial of Service
    References:Source: MITRE
    Type: CNA
    CVE-2005-0772

    Source: CCN
    Type: SA15789
    VERITAS Backup Exec Multiple Vulnerabilities

    Source: CCN
    Type: SECTRACK ID: 1014273
    Veritas Backup Exec Bugs Let Remote Users Execute Arbitrary Code, Crash the System, and Modify the Registry

    Source: CCN
    Type: Veritas Document ID: 276533
    Multiple Denial of Service (DoS) in VERITAS Software Backup Exec Remote Agent for Windows Servers and Remote Agent for NetWare Servers

    Source: CCN
    Type: BID-14019
    Veritas Backup Exec/NetBackup Request Packet Denial Of Service Vulnerability

    Source: CCN
    Type: BID-14021
    Veritas Backup Exec Remote Agent Null Pointer Dereference Denial Of Service Vulnerability

    Source: CCN
    Type: Veritas NetBackup Web page
    NetBackup™ Server

    Source: XF
    Type: UNKNOWN
    backupexec-status-value-dos(21108)

    Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:novell:netware:6.5:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.306:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.1154:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.1152.4:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.1152:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.1151.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.1127.1:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.1067.3:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.1.1067.2:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.0.4202:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.0.4174:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.0.4172:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.0.4170:*:*:*:*:*:*:*
  • OR cpe:/a:symantec_veritas:backup_exec:9.0.4019:*:*:*:*:*:*:*
  • AND
  • cpe:/a:novell:netware:5.0:*:*:*:*:*:*:*
  • OR cpe:/o:novell:netware:5.1:*:*:*:*:*:*:*
  • OR cpe:/o:novell:netware:6.0:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Vulnerability Name:

    CVE-2005-0772 (CCN-21112)

    Assigned:2005-06-22
    Published:2005-06-22
    Updated:2011-03-08
    Summary:VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
    CVSS v3 Severity:7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
    Exploitability Metrics:Attack Vector (AV): Network
    Attack Complexity (AC): Low
    Privileges Required (PR): None
    User Interaction (UI): None
    Scope:Scope (S): Unchanged
    Impact Metrics:Confidentiality (C): None
    Integrity (I): None
    Availibility (A): High
    CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Low
    Authentication (Au): None
    Impact Metrics:Confidentiality (C): None
    Integrity (I): None
    Availibility (A): Partial
    7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
    Exploitability Metrics:Access Vector (AV): Network
    Access Complexity (AC): Low
    Athentication (Au): None
    Impact Metrics:Confidentiality (C): None
    Integrity (I): None
    Availibility (A): Complete
    Vulnerability Type:CWE-Other
    Vulnerability Consequences:Denial of Service
    References:Source: MITRE
    Type: CNA
    CVE-2005-0772

    Source: CCN
    Type: SA15789
    VERITAS Backup Exec Multiple Vulnerabilities

    Source: CCN
    Type: SECTRACK ID: 1014273
    Veritas Backup Exec Bugs Let Remote Users Execute Arbitrary Code, Crash the System, and Modify the Registry

    Source: CCN
    Type: Veritas Document ID: 276533
    Multiple Denial of Service (DoS) in VERITAS Software Backup Exec Remote Agent for Windows Servers and Remote Agent for NetWare Servers

    Source: CCN
    Type: BID-14019
    Veritas Backup Exec/NetBackup Request Packet Denial Of Service Vulnerability

    Source: CCN
    Type: BID-14021
    Veritas Backup Exec Remote Agent Null Pointer Dereference Denial Of Service Vulnerability

    Source: CCN
    Type: Veritas NetBackup Web page
    NetBackup™ Server

    Source: XF
    Type: UNKNOWN
    backupexec-null-pointer-dos(21112)

    BACK
    symantec_veritas backup exec 10.0
    symantec_veritas backup exec 10.0_sp1
    novell netware 6.5
    symantec veritas netbackup server -
    novell netware 5.1
    novell netware 6.0
    novell netware 6.5
    symantec_veritas backup exec 9.1.306
    symantec_veritas backup exec 9.1.1154
    symantec_veritas backup exec 9.1.1152.4
    symantec_veritas backup exec 9.1.1152
    symantec_veritas backup exec 9.1.1151.1
    symantec_veritas backup exec 9.1.1127.1
    symantec_veritas backup exec 9.1.1067.3
    symantec_veritas backup exec 9.1.1067.2
    symantec_veritas backup exec 9.0.4202
    symantec_veritas backup exec 9.0.4174
    symantec_veritas backup exec 9.0.4172
    symantec_veritas backup exec 9.0.4170
    symantec_veritas backup exec 9.0.4019
    novell netware 5.0
    novell netware 5.1
    novell netware 6.0
    microsoft windows 2003_server