CVE-2006-4228 - Symantec Veritas NetBackup PureDisk Remote Office Edition 6.0 before MP1 20060816 allows remote atta

CVE-2006-4228

Summary

Symantec Veritas NetBackup PureDisk Remote Office Edition 6.0 before MP1 20060816 allows remote attackers to bypass authentication and gain privileges via unknown attack vectors in the management interface. This vulnerability is addresses in the following patch: Symantec Veritas, NetBackup PureDisk Remote Office Edition, 6.0 MP1 20060816

References

Vulnerable Configurations

cpe:2.3:a:symantec_veritas:netbackup_puredisk_remote_office_edition:6.0:*:*:*:*:*:*:*
cpe:2.3:a:symantec_veritas:netbackup_puredisk_remote_office_edition:6.0:*:*:*:*:*:*:*

CVSS

Base:	9.0 (as of 17-10-2018 - 21:34)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	SINGLE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:S/C:C/I:C/A:C

refmap via4

bid	19524
bugtraq	20060816 SYM06-16 Symantec NetBackup PureDisk Remote Office Edition Elevation of Privilege 20060817 Re: SYM06-16 Symantec NetBackup PureDisk Remote Office Edition Elevation of Privilege
confirm	http://securityresponse.symantec.com/avcenter/security/Content/2006.08.16.html http://seer.entsupport.symantec.com/docs/284734.htm
sectrack	1016704
secunia	21507
sreason	1412
vupen	ADV-2006-3299
xf	netbackup-puredisk-auth-bypass(28415)

Last major update

17-10-2018 - 21:34

Published

18-08-2006 - 20:04

Last modified

17-10-2018 - 21:34