7.5

CVE-2005-0358

EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
EmcLegato Networker Version4.2.2
EmcLegato Networker Version6.0
EmcLegato Networker Version6.1
EmcLegato Networker Version7.2
EmcLegato Networker Version7.13
SunSolstice Backup Version6.0
SunSolstice Backup Version6.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 4.63% 0.905
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/16464
Patch
Vendor Advisory
http://secunia.com/advisories/16470
Vendor Advisory
http://securitytracker.com/id?1014713
Patch
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1
Patch
Vendor Advisory
http://www.securityfocus.com/bid/14582
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/407641
Patch
Third Party Advisory
US Government Resource
http://www.legato.com/support/websupport/product_alerts/081605_NW_token_authentication.htm
http://www.osvdb.org/18801
https://exchange.xforce.ibmcloud.com/vulnerabilities/21892