Symantec Backup Exec Media Server NDMP Command Execution VulnerabilityID: oval:org.secpod.oval:def:1228 | Date: (C)2011-06-20 (M)2021-09-11 |
Class: VULNERABILITY | Family: windows |
The host is installed with Symantec Backup Exec, which is prone to the man in the middle attack. A flaw is present in the application, which is caused due to a weak implementation of communication protocol and lack of validation of identity information between media server and remote agent. Successful exploitation could allow attackers to execute arbitrary command on the remote host.
Platform: |
Microsoft Windows 2000 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Product: |
Symantec Backup Exec |