Veritas.NetBackup.bpjava-susv.Remote.Command.Execution
Description
This indicates an attack attempt against a vulnerability in the Veritas NetBackup.
The vulnerability is a result of the application's failure to properly sanitize user-supplied command before executing it. It may allow a remote attacker to execute arbitrary commands via the bpjava-susvc process.
Affected Products
Veritas Software NetBackup Server 5.0
Veritas Software NetBackup Server 5.1
Veritas Software NetBackup Enterprise Server 5.1
Veritas Software NetBackup DataCenter 3.4.1
Veritas Software NetBackup DataCenter 4.5
Veritas Software NetBackup BusinesServer 3.4.1
Veritas Software NetBackup BusinesServer 4.5
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's website for workaround.
http://seer.support.veritas.com/docs/271727.htm
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2023-08-10 | 25.619 | Name:Symantec. Veritas. NetBackup. Remote. Command. Execution:Veritas. NetBackup. bpjava-susv. Remote. Command. Execution |