Title: Knox Arkeia Network Backup Agent Remote Unauthorized Access Vulnerability
Severity: CRITICAL
Description:
Knox Arkeia Network Backup is an enterprise-based backup software solution distributed and maintained by Knox Software.
Knox Arkeia Network Backup is reported prone to a remote unauthorized access vulnerability.
It is reported that an agent service is installed by both the Arkeia client and server software; the agent listens on TCP port 617. This service is employed in order to register a particular client against an Arkeia backup server and to provide file backup and restore functionality.
Reports indicate that authentication is not required in order to connect to the affected agent software. A remote attacker may connect to the affected service to initiate backup and restore requests in order to read and write arbitrary files, because the agent runs with superuser privileges this may lead to a full compromise.
Affected Products:
- Knox Software Arkeia 4.0.0
- Knox Software Arkeia 4.1.0
- Knox Software Arkeia 4.2.0
- Knox Software Arkeia 5.2.0
- Knox Software Arkeia 5.3.0
- S.u.S.E. Linux 6.2.0
References:
- H D Moore: Arkeia Agent
- Knox Software: Knox Software Home Page
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
