Vulnerability Description
Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5, DataCenter 3.4, 3.4.1, and 4.5, Enterprise Server 5.1, and NetBackup Server 5.0 and 5.1, allows attackers to execute arbitrary commands via the bpjava-susvc process, possibly related to the call-back feature.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Veritas | Netbackup | 3.4.0 |
References
- http://secunia.com/advisories/12901/Vendor Advisory
- http://seer.support.veritas.com/docs/271727.htmPatchVendor Advisory
- http://www.ciac.org/ciac/bulletins/p-020.shtmlPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/685456PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/11494
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17811
- http://secunia.com/advisories/12901/Vendor Advisory
- http://seer.support.veritas.com/docs/271727.htmPatchVendor Advisory
- http://www.ciac.org/ciac/bulletins/p-020.shtmlPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/685456PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/11494
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17811
FAQ
What is CVE-2004-1389?
CVE-2004-1389 is a vulnerability with a CVSS score of 6.0 (MEDIUM). Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5, DataCenter 3.4, 3.4.1, and 4.5, Enterprise Server 5.1, and NetBackup ...
How severe is CVE-2004-1389?
CVE-2004-1389 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1389?
Check the references section above for vendor advisories and patch information. Affected products include: Veritas Netbackup.