10
CVE-2011-0547
- EPSS 32.12%
- Published 19.08.2011 21:55:01
- Last modified 11.04.2025 00:51:21
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Multiple integer overflows in vxsvc.exe in the Veritas Enterprise Administrator service in Symantec Veritas Storage Foundation 5.1 and earlier, Veritas Storage Foundation Cluster File System (SFCFS) 5.1 and earlier, Veritas Storage Foundation Cluster File System Enterprise for Oracle RAC (SFCFSORAC) 5.1 and earlier, Veritas Dynamic Multi-Pathing (DMP) 5.1, and NetBackup PureDisk 6.5.x through 6.6.1.x allow remote attackers to execute arbitrary code via (1) a crafted Unicode string, related to the vxveautil.value_binary_unpack function; (2) a crafted ASCII string, related to the vxveautil.value_binary_unpack function; or (3) a crafted value, related to the vxveautil.kv_binary_unpack function, leading to a buffer overflow.
Data is provided by the National Vulnerability Database (NVD)
Symantec ≫ Veritas Dynamic Multi-pathing Version5.1
Symantec ≫ Veritas Storage Foundation Version <= 5.1
Symantec ≫ Veritas Storage Foundation Version5.0
Symantec ≫ Veritas Storage Foundation Cluster File System For Oracle Rac Version <= 5.1
Symantec ≫ Netbackup Puredisk Version6.5.0.1
Symantec ≫ Netbackup Puredisk Version6.5.1
Symantec ≫ Netbackup Puredisk Version6.5.1.1
Symantec ≫ Netbackup Puredisk Version6.5.1.2
Symantec ≫ Netbackup Puredisk Version6.6.1
Symantec ≫ Netbackup Puredisk Version6.6.1.1
Symantec ≫ Netbackup Puredisk Version6.6.1.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 32.12% | 0.964 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|