virus logo Intrusion Prevention

Veritas.NetBackup.bpjava-susv.Remote.Command.Execution

description-logoDescription

This indicates an attack attempt against a vulnerability in the Veritas NetBackup.
The vulnerability is a result of the application's failure to properly sanitize user-supplied command before executing it. It may allow a remote attacker to execute arbitrary commands via the bpjava-susvc process.

affected-products-logoAffected Products

Veritas Software NetBackup Server 5.0
Veritas Software NetBackup Server 5.1
Veritas Software NetBackup Enterprise Server 5.1
Veritas Software NetBackup DataCenter 3.4.1
Veritas Software NetBackup DataCenter 4.5
Veritas Software NetBackup BusinesServer 3.4.1
Veritas Software NetBackup BusinesServer 4.5

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Refer to the vendor's website for workaround.
http://seer.support.veritas.com/docs/271727.htm

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-08-10 25.619 Name:Symantec.
Veritas.
NetBackup.
Remote.
Command.
Execution:Veritas.
NetBackup.
bpjava-susv.
Remote.
Command.
Execution

References

http://seer.support.veritas.com/docs/271727.htm
ID 16318
Created Dec 10, 2008
Updated Aug 09, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2004-1389
Exploit Prediction Score 4.49%
Default Action drop
Active
Affected OS Windows
Affected App Veritas