APP: Veritas NetBackup Format String
This signature detects an attempt to exploit a known format string vulnerability in Veritas NetBackup. A successful attack can allow an attacker to execute arbitrary code at an elevated privilege level.
Extended Description
NetBackup Java user interface is affected by a remote format-string vulnerability. An attacker can exploit this vulnerability by crafting a malicious request that contains format specifiers. A successful attack may crash the server or lead to arbitrary code execution. This may facilitate unauthorized access or privilege escalation with SYSTEM or superuser privileges.
Affected Products
Veritas_software netbackup_datacenter
Short Name
APP:VERITAS:NETBACKUP-FS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2005-2715 Format NetBackup String Veritas bid:15079
Release Date
10/14/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3727
Port
TCP/13722
False Positive
Unknown
Vendors
Veritas_software
CVSS Score
10.0