Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backup exec vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2002-1117
Veritas Backup Exec 8.5 and previous versions requires that the "RestrictAnonymous" registry key for Microsoft Exchange 2000 must be set to 0, which enables anonymous listing of the SAM database and shares.
Symantec Veritas Backup Exec
436
VMScore
CVE-2011-3477
GEAR Software CD DVD Filter driver (aka GEARAspiWDM.sys), as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows local users to cause a denial of service (system crash) via unspecified vectors.
Symantec Norton Ghost
Symantec System Recovery 2011 10.0
Symantec Backup Exec System Recovery 8.5
Symantec Backup Exec System Recovery 9.0
Symantec Norton 360 5.0
Symantec Backup Exec System Recovery 2010
409
VMScore
CVE-2006-1298
Format string vulnerability in the Job Engine service (bengine.exe) in the Media Server in Veritas Backup Exec 10d (10.1) for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows...
Symantec Veritas Backup Exec 10.0
Symantec Veritas Backup Exec 9.1
392
VMScore
CVE-2012-0305
Untrusted search path vulnerability in Symantec System Recovery 2011 before SP2 and Backup Exec System Recovery 2010 before SP5 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Symantec Backupexec System Recovery 2010
Symantec System Recovery 2011
Symantec Backupexec System Recovery 2011
383
VMScore
CVE-2013-4676
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Backup Exec 2010 R3 prior to 2010 R3 SP3 and 2012 before SP2 allow remote malicious users to inject arbitrary web script or HTML via vectors involving a (1) custom-reports generation page, (2) Storage Devices creatio...
Symantec Backup Exec 2010 R3
Symantec Backup Exec 2012
383
VMScore
CVE-2013-4677
Symantec Backup Exec 2010 R3 prior to 2010 R3 SP3 and 2012 before SP2 uses weak permissions (Everyone: Read and Everyone: Change) for backup data files, which allows local users to obtain sensitive information or modify the outcome of a restore via direct access to these files.
Symantec Backup Exec 2012
Symantec Backup Exec 2010 R3
Symantec Backup Exec 2010
312
VMScore
CVE-2018-5736
An error in zone database reference counting can lead to an assertion failure if a server which is running an affected version of BIND attempts several transfers of a slave zone in quick succession. This defect could be deliberately exercised by an attacker who is permitted to ca...
Isc Bind 9.12.0
Isc Bind 9.12.1
Netapp Data Ontap Edge -
Netapp Cloud Backup -
240
VMScore
CVE-2013-4678
The NDMP protocol implementation in Symantec Backup Exec 2010 R3 prior to 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified vectors.
Symantec Backup Exec 2010 R3
Symantec Backup Exec 2012
Symantec Backup Exec 2010
169
VMScore
CVE-2017-2624
It was found that xorg-x11-server prior to 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is...
X.org Xorg-server
Debian Debian Linux 7.0
1 Github repository
NA
CVE-2024-33671
An issue exists in Veritas Backup Exec prior to 22.2 HotFix 917391. The Backup Exec Deduplication Multi-threaded Streaming Agent can be leveraged to perform arbitrary file deletion on protected files.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »