CVE-2005-0771

VERITAS Backup Exec Server <10.0 - RCE

Title source: llm

Description

VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the registry by calling methods to the RPC interface on TCP port 6106.

Exploits (1)

metasploit WORKING POC

by hdm · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/backupexec/registry.rb

View Code ZIP pw:eip

References (7)

[Patch, Vendor Advisory] http://secunia.com/advisories/15789

[Patch] http://securitytracker.com/id?1014273

[Patch, Vendor Advisory] http://seer.support.veritas.com/docs/276605.htm

[Patch] http://seer.support.veritas.com/docs/277429.htm

[Various Sources] http://www.idefense.com/application/poi/display?id=269&type=vulnerabilities&flashstatus=true

[Patch, Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/584505

[Patch, Third Party Advisory, US Government Resource] http://www.us-cert.gov/cas/techalerts/TA05-180A.html

Scores

EPSS 0.8137

EPSS Percentile 99.2%

Details

Status published

Products (4)

symantec_veritas/backup_exec 9.0_rev.4367

symantec_veritas/backup_exec 9.0_rev.4454

symantec_veritas/backup_exec 9.1_rev.4691

symantec_veritas/backup_exec 10.0_rev.5484

Published Jun 23, 2005

Tracked Since Feb 18, 2026