7.5
CVE-2005-0358
- EPSS 4.63%
- Veröffentlicht 23.08.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:10:58
- Quelle cret@cert.org
- CVE-Watchlists
- Unerledigt
EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Emc ≫ Legato Networker Version4.2.2
Emc ≫ Legato Networker Version6.0
Emc ≫ Legato Networker Version6.1
Emc ≫ Legato Networker Version7.2
Emc ≫ Legato Networker Version7.13
Sun ≫ Solstice Backup Version6.0
Sun ≫ Solstice Backup Version6.1
Sun ≫ Storedge Enterprise Backup Software Version7.0
Sun ≫ Storedge Enterprise Backup Software Version7.1
Sun ≫ Storedge Enterprise Backup Software Version7.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.63% | 0.905 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://secunia.com/advisories/16464
http://secunia.com/advisories/16470
http://securitytracker.com/id?1014713
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1
http://www.securityfocus.com/bid/14582
http://www.kb.cert.org/vuls/id/407641
http://www.legato.com/support/websupport/product_alerts/081605_NW_token_authentication.htm
http://www.osvdb.org/18801
https://exchange.xforce.ibmcloud.com/vulnerabilities/21892