1. CVE-Search
  2. CVE-2005-0773
ID CVE-2005-0773
Summary Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECT_CLIENT_AUTH request with authentication method type 3 (Windows credentials) and a long password argument.
References
Vulnerable Configurations
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0.4019:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0.4019:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0.4170:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0.4170:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0.4172:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0.4172:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0.4174:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0.4174:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0.4202:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0.4202:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4367:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4367:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4367_sp1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4367_sp1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4454:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4454:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4454_sp1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.0_rev.4454_sp1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.306:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.306:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.307:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.307:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.1067.2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.1067.2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.1067.3:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.1067.3:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.1127.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.1127.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.1151.1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.1151.1:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.1152:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.1152:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.1152.4:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.1152.4:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1.1154:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1.1154:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1_rev.4691:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1_rev.4691:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:9.1_rev.4691_sp2:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:9.1_rev.4691_sp2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:10.0_rev.5484:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:10.0_rev.5484:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec_veritas:backup_exec:10.0_rev.5484_sp1:*:*:*:*:*:*:*
    cpe:2.3:a:symantec_veritas:backup_exec:10.0_rev.5484_sp1:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 08-03-2011 - 02:20)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
auscert AL-2005.013
bid 14022
cert TA05-180A
cert-vn VU#492105
confirm
idefense 20050623 Veritas Backup Exec Agent CONNECT_CLIENT_AUTH Buffer Overflow Vulnerability
osvdb 17624
sectrack 1014273
secunia 15789
saint via4
bid 14022
description VERITAS Backup Exec CONNECT_CLIENT_AUTH buffer overflow
id misc_backupexec,misc_backupexecconn
osvdb 17624
title backup_exec_connect_client_auth
type remote
Last major update 08-03-2011 - 02:20
Published 18-06-2005 - 04:00
Last modified 08-03-2011 - 02:20
Back to Top