CVE-2005-3116
Summary
| CVE | CVE-2005-3116 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2005-11-18 06:03:00 UTC |
| Updated | 2017-07-11 01:33:00 UTC |
| Description | Stack-based buffer overflow in a shared library as used by the Volume Manager daemon (vmd) in VERITAS NetBackup Enterprise Server 5.0 MP1 to MP5 and 5.1 up to MP3A allows remote attackers to execute arbitrary code via a crafted packet. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Symantec Veritas | Netbackup | 5.0_with_mp1 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp2 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp3 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp4 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp5 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_without_mp | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_with_mp1 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_with_mp2 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_with_mp3a | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp1 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp2 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp3 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp4 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.0_with_mp5 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_without_mp | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_with_mp1 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_with_mp2 | All | All | All |
| Application | Symantec Veritas | Netbackup | 5.1_with_mp3a | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| SecurityTracker.com Archives - Veritas NetBackup Buffer Overflow in vmd Shared Library Lets Remote Users Execute Arbitrary Code | SECTRACK | securitytracker.com | Patch |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | Exploit, Vendor Advisory |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | Exploit, Vendor Advisory |
| Symantec Advisory SYM05-024: Exploitation of a buffer overflow vulnerability in VERITAS NetBackup (tm) Enterprise Server/Server 5.0 and 5.1 could potentially lead to a remote Denial Of Service or remote code execution. | CONFIRM | seer.support.veritas.com | Patch, Vendor Advisory |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| VERITAS NetBackup Volume Manager Daemon Buffer Overflow Vulnerability | BID | www.securityfocus.com | Patch |
| Advisory: 11.10.05 // VeriSign iDefense | IDEFENSE | www.idefense.com | Patch |
| 20674 | OSVDB | www.osvdb.org | Patch |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| Secunia - Advisories - VERITAS NetBackup "vmd" Shared Library Buffer Overflow Vulnerability | SECUNIA | secunia.com | Patch, Vendor Advisory |
| US-CERT Vulnerability Note VU#574662 | CERT-VN | www.kb.cert.org | Patch, US Government Resource |
| VERITAS NetBackup 5.x: Buffer Overflow in Shared Library used by Volume Manager Daemon | CONFIRM | securityresponse.symantec.com | Patch |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.