Security News -  Security Reviews -   Exploits -  Tools -  UNIX Focus -  Windows Focus
SecuriTeam™  Beyond Security®  SecuriTeam™ Home  Ask the Team  Mailing Lists  Advertising Info  Blogs SecuriTeam™ in Your Inbox   E-mail this CVE-2009-3027 to a friend New vulnerability? New tool? Tell us	CVE-2009-3027 Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability     Credit: The original article can be found at: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-3027 The original article can be found at: http://www.securityfocus.com/bid/37012 Website Security Scan Code Vulnerability Test Network Assessment Tool Detect hidden vulnerabilities Exhaustive automated testing Real-time, continuous security Get guidance from professionals of internal or 3rd party code. scanning for your entire network    CVE-2009-3027 Details Check for CVE-2009-3027 Vulnerability Assessment and Management. Automated Pen Testing for 50 to 50,000 nodes beyondsecurity.com/vulnerability-scanner Vulnerable Systems:  * Symantec Backup Exec Continuous Protection Server (CPS) 11d,  * Symantec Backup Exec Continuous Protection Server (CPS) 12.0,  * Symantec Backup Exec Continuous Protection Server (CPS) 12.5;  * Veritas NetBackup Operations Manager (NOM) 6.0 GA through 6.5.5;  * Veritas Backup Reporter (VBR) 6.0 GA through 6.6;  * Veritas Storage Foundation (SF) 3.5;  * Veritas Storage Foundation for Windows High Availability (SFWHA) 4.3MP2,  * Veritas Storage Foundation for Windows High Availability (SFWHA)5.0,  * Veritas Storage Foundation for Windows High Availability (SFWHA)5.0RP1a,  * Veritas Storage Foundation for Windows High Availability (SFWHA) 5.0RP2,  * Veritas Storage Foundation for Windows High Availability (SFWHA) 5.1,  * Veritas Storage Foundation for Windows High Availability (SFWHA) 5.1AP1;  * Veritas Storage Foundation for High Availability (SFHA) 3.5;  * Veritas Storage Foundation for Oracle (SFO) 4.1,  * Veritas Storage Foundation for Oracle (SFO)5.0,  * Veritas Storage Foundation for Oracle (SFO)5.0.1;  * Veritas Storage Foundation for DB2 4.1  * Veritas Storage Foundation for DB2 5.0;  * Veritas Storage Foundation for Sybase 4.1  * Veritas Storage Foundation for Sybase5.0;  * Veritas Storage Foundation for Oracle Real Application Cluster (SFRAC) 3.5,  * Veritas Storage Foundation for Oracle Real Application Cluster (SFRAC) 4.0,  * Veritas Storage Foundation for Oracle Real Application Cluster (SFRAC) 4.1,  * Veritas Storage Foundation for Oracle Real Application Cluster (SFRAC) 5.0;  * Veritas Storage Foundation Manager (SFM) 1.0,  * Veritas Storage Foundation Manager (SFM) 1.0 MP1,  * Veritas Storage Foundation Manager (SFM) 1.1,  * Veritas Storage Foundation Manager (SFM)1.1.1Ux,  * Veritas Storage Foundation Manager (SFM) 1.1.1Win,  * Veritas Storage Foundation Manager (SFM) 2.0;  * Veritas Cluster Server (VCS) 3.5,  * Veritas Cluster Server (VCS) 4.0,  * Veritas Cluster Server (VCS) 4.1,  * Veritas Cluster Server (VCS) 5.0;  * Veritas Cluster Server One (VCSOne) 2.0,  * Veritas Cluster Server One (VCSOne) 2.0.1,  * Veritas Cluster Server One (VCSOne) 2.0.2;  * Veritas Application Director (VAD) 1.1  * Veritas Application Director (VAD) 1.1 Platform Expansion;  * Veritas Cluster Server Management Console (VCSMC) 5.1,  * Veritas Cluster Server Management Console (VCSMC) 5.5,  * Veritas Cluster Server Management Console (VCSMC) 5.5.1;  * Veritas Storage Foundation Cluster File System (SFCFS) 3.5,  * Veritas Storage Foundation Cluster File System (SFCFS) 4.0,  * Veritas Storage Foundation Cluster File System (SFCFS) 4.1,  * Veritas Storage Foundation Cluster File System (SFCFS) 5.0;  * Veritas Storage Foundation Cluster File System for Oracle RAC (SFCFS RAC) 5.0;  * Veritas Command Central Storage (CCS) 4.x,  * Veritas Command Central Storage (CCS)5.0,  * Veritas Command Central Storage (CCS)5.1;  * Veritas Command Central Enterprise Reporter (CC-ER) 5.0 GA,  * Veritas Command Central Enterprise Reporter (CC-ER) 5.0 MP1,  * Veritas Command Central Enterprise Reporter (CC-ER) 5.0 MP1RP1,  * Veritas Command Central Enterprise Reporter (CC-ER) 5.1;  * Veritas Command Central Storage Change Manager (CC-SCM) 5.0  * Veritas Command Central Storage Change Manager (CC-SCM) 5.1;  *Veritas MicroMeasure 5.0 Symantec Veritas VRTSweb is prone to a remote code-execution vulnerability. Remote attackers can exploit this issue to execute arbitrary code with elevated privileges. Successful exploits will completely compromise affected computers. Vendor Status: Symantec as issued an update for this vulnerablity Patch Availability: http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20091209_00 CVE Information: CVE-2009-3027  Comments on CVE-2009-3027:  Add new comment:  Subject:  Name/Nick/Email:          Chars Left:	All Sections Security News Unix focus Exploits Tools Windows focus Security Reviews
	Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

Copyright © 1998-2010 Beyond Security® All rights reserved.
Terms of Use Site Privacy Statement.
SecuriTeam™ is a trademark of Beyond Security®