backup manager backup manager vulnerabilities and exploits

(subscribe to this query)

lib/backup-methods.sh in Backup Manager prior to 0.7.6 provides the MySQL password as a plaintext command line argument, which allows local users to obtain this password by listing the process and its arguments, related to lib/backup-methods.sh.

Backup Manager Backup Manager

backup-manager-upload in Backup Manager prior to 0.6.3 provides the FTP server hostname, username, and password as plaintext command line arguments during FTP uploads, which allows local users to obtain sensitive information by listing the process and its arguments, a different v...

Backup Manager Backup Manager

Backup Manager (backup-manager) prior to 0.5.8 creates backup files with world-readable default permissions, which allows local users to obtain sensitive information.

Sukria Backup Manager 0.5.6 Sukria Backup Manager 0.5.7 Debian Debian Linux 3.1

Backup Manager 0.5.8a creates an archive repository with world readable and writable permissions, which allows malicious users to modify or read the repository.

Sukria Backup Manager 0.5.8a

Backup Manager 0.5.8a creates temporary files insecurely, which allows local users to conduct unauthorized file operations when a user is burning a CDR.

Sukria Backup Manager 0.5.8a

SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager prior to 5.1.2, SolarWinds Storage Profiler prior to 5.1.2, and SolarWinds Backup Profiler prior to 5.1.2 allows remote malicious users to execute arbitrary SQL commands via the loginName field.

Solarwinds Storage Profiler Solarwinds Backup Profiler Solarwinds Storage Manager

1 EDB exploit

Multiple stack-based buffer overflows in the RPC implementation in alert.exe prior to 8.0.255.0 in CA (formerly Computer Associates) Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor En...

Broadcom Brightstor Arcserve Backup 9.01 Ca Brightstor Arcserve Client Broadcom Brightstor Enterprise Backup 10.5 Broadcom Brightstor Arcserve Backup 11.5 Ca Brightstor Arcserve Backup 11 Broadcom Alert Notification Server Ca Protection Suites R3 Ca Threat Manager 8 Ca Anti-virus For The Enterprise 8 Broadcom Brightstor Arcserve Backup 11.1

Multiple stack-based buffer overflows in Computer Associates (CA) Alert Notification Service (Alert.exe) 8.1.586.0, 8.0.450.0, and 7.1.758.0, as used in multiple CA products including Anti-Virus for the Enterprise 7.1 through r11.1 and Threat Manager for the Enterprise 8.1 and r8...

Ca Brightstor Arcserve Backup 11 Ca Threat Manager For The Enterprise R8 Broadcom Anti-virus For The Enterprise 8 Broadcom Anti-virus For The Enterprise 8.1 Broadcom Brightstor Arcserve Backup 11.1 Broadcom Brightstor Arcserve Backup 11.5 Broadcom Anti-virus For The Enterprise 7.1 Ca Threat Manager For The Enterprise R8.1

1 EDB exploit

Vulnerability in Veeam Backup & Replication component allows encrypted credentials stored in the configuration database to be obtained. This may lead to gaining access to the backup infrastructure hosts.

Veeam Veeam Backup \\& Replication 11.0.1.1261 Veeam Veeam Backup \\& Replication 12.0.0.1420

3 Github repositories2 Articles

Improper authentication in Veeam Backup & Replication 9.5U3, 9.5U4,10.x and 11.x component used for Microsoft System Center Virtual Machine Manager (SCVMM) allows attackers execute arbitrary code via Veeam.Backup.PSManager.exe

Veeam Veeam Backup \\& Replication 11.0.1.1261 Veeam Veeam Backup \\& Replication 10.0.1.4854 Veeam Veeam Backup \\& Replication 9.5.4.2615 Veeam Veeam Backup \\& Replication 9.5.0.1536 Veeam Veeam Backup \\& Replication

1 Github repository1 Article

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook