deepakm at rice
Feb 5, 2009, 12:54 PM
Vulnerability Nessus ID 34820 shows that a server has the vulnerability:
Symantec Backup Exec Authentication Bypass and Potential Buffer Overflow
inid:34820> Family: Gain root remotely NASL: PLUGIN.nasl
It is possible to bypass the backup agent authentication.
The remote host is running a version of VERITAS Backup Exec Agent which is
vulnerable to multiple authentication bypass issues.
An attacker may exploit this flaw to manage the backup agent and/or to
execute commands with high privileges.
Risk factor :
Critical / CVSS Base Score : 10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
But, this fix was to install the latest and greatest version of BES, which
it already has the newest version/the fix for this vulnerability.
So, why does the vulnerability still show positive? I was not able to open
the .nasl to see what the scan is doing:
But, I was not able to open the "PLUGIN.nasl"
Please advise. Thanks!