CVE-2004-1389

Veritas NetBackup - RCE

Title source: llm

Description

Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5, DataCenter 3.4, 3.4.1, and 4.5, Enterprise Server 5.1, and NetBackup Server 5.0 and 5.1, allows attackers to execute arbitrary commands via the bpjava-susvc process, possibly related to the call-back feature.

Exploits (2)

exploitdb WORKING POC VERIFIED

by patrick · rubyremotemultiple

https://www.exploit-db.com/exploits/9941

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by aushack · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/misc/veritas_netbackup_cmdexec.rb

View Code ZIP pw:eip

References (6)

[Vendor Advisory] http://secunia.com/advisories/12901/

[Patch, Vendor Advisory] http://seer.support.veritas.com/docs/271727.htm

[Patch, Vendor Advisory] http://www.ciac.org/ciac/bulletins/p-020.shtml

[Patch, Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/685456

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/11494

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/17811

Scores

EPSS 0.2826

EPSS Percentile 96.5%

Details

Status published

Products (5)

veritas/netbackup 3.4.0 (2 CPE variants)

veritas/netbackup 3.4.1 (2 CPE variants)

veritas/netbackup 4.5.0 (2 CPE variants)

veritas/netbackup 5.0

veritas/netbackup 5.1 (2 CPE variants)

Published Dec 31, 2004

Tracked Since Feb 18, 2026