10
CVE-2006-4902
- EPSS 4.11%
- Veröffentlicht 14.12.2006 20:28:00
- Zuletzt bearbeitet 16.06.2026 22:30:00
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The NetBackup bpcd daemon (bpcd.exe) in Symantec Veritas NetBackup 5.0 before 5.0_MP7, 5.1 before 5.1_MP6, and 6.0 before 6.0_MP4 does not properly check for chained commands, which allows remote attackers to execute arbitrary commands by appending malicious commands to valid commands.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Symantec ≫ Veritas Netbackup Client Version5.0
Symantec ≫ Veritas Netbackup Client Version5.1
Symantec ≫ Veritas Netbackup Client Version6.0
Symantec ≫ Veritas Netbackup Enterprise Server Version5.0
Symantec ≫ Veritas Netbackup Enterprise Server Version5.1
Symantec ≫ Veritas Netbackup Enterprise Server Version6.0
Symantec ≫ Veritas Netbackup Server Version5.0
Symantec ≫ Veritas Netbackup Server Version5.1
Symantec ≫ Veritas Netbackup Server Version6.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 4.11% | 0.894 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://secunia.com/advisories/23368
http://securitytracker.com/id?1017379
http://www.iss.net/threats/247.html
http://www.kb.cert.org/vuls/id/252936
http://www.securityfocus.com/bid/21565
http://www.symantec.com/avcenter/security/Content/2006.12.13a.html
http://www.vupen.com/english/advisories/2006/4999
https://exchange.xforce.ibmcloud.com/vulnerabilities/27638