7.5

CVE-2005-0357

EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 rely on AUTH_UNIX authentication, which relies on user ID for authentication and allows remote attackers to bypass authentication and gain privileges by spoofing a username or UID.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
EmcLegato Networker Version4.2.2
EmcLegato Networker Version6.0
EmcLegato Networker Version6.1
EmcLegato Networker Version7.2
EmcLegato Networker Version7.13
SunSolstice Backup Version6.0
SunSolstice Backup Version6.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.5% 0.903
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/16464
Patch
Vendor Advisory
http://secunia.com/advisories/16470
Vendor Advisory
http://securitytracker.com/id?1014713
Patch
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/606857
Patch
Third Party Advisory
US Government Resource
http://www.legato.com/support/websupport/product_alerts/081605_NW_authentication.htm
Patch
http://www.osvdb.org/18800
http://www.securityfocus.com/bid/14582
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/21887