|
|
CVE Reference: CVE-2005-0359 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-0359 |
|
|
Description: The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the pmap_set and pmap_unset commands, which allows remote attackers to (1) cause a denial of service by using pmap_unset to un-register a NetWorker service, or (2) obtain sensitive information from NetWorker services by using pmap_set to register a new service. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/21893 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1 ST 1014713 SAID Secunia Advisory: SA16464 Secunia Advisory: SA16470 OSVDB 18802 CONFIRM http://www.legato.com/support/websupport/product_alerts/081605_NW_port_mapper.htm CERT-VN 801089 BID 14582 |
|
| Return to the previous page. |
