Some vulnerabilities have been reported in Symantec Veritas NetBackup, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to overwrite arbitrary files or compromise a vulnerable system.
1) An unspecified error in the JAVA Administration GUI (jnbSA) can be exploited to execute restricted commands with escalated privileges.
Successful exploitation requires a valid user account and GUI access.
2) Multiple vulnerabilities are caused due to an insecure method and various boundary errors present in the PVATLCalendar.PVCalendar.1 (pvcalendar.ocx) ActiveX control.
Do you have additional information related to this advisory?
Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this
information to firstname.lastname@example.org