Intrusion Prevention

Symantec.Veritas.NetBackup.Remote.Command.Execution

Description

This indicates an attack attempt against a vulnerability in the Veritas NetBackup.
The vulnerability is a result of the application's failure to properly sanitize user-supplied command before executing it. It may allow a remote attacker to execute arbitrary commands via the bpjava-susvc process.

Affected Products

Veritas Software NetBackup Server 5.0
Veritas Software NetBackup Server 5.1
Veritas Software NetBackup Enterprise Server 5.1
Veritas Software NetBackup DataCenter 3.4.1
Veritas Software NetBackup DataCenter 4.5
Veritas Software NetBackup BusinesServer 3.4.1
Veritas Software NetBackup BusinesServer 4.5

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's website for workaround.
http://seer.support.veritas.com/docs/271727.htm

CVE References

CVE-2004-1389