Vulnerability Description
VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Veritas | Backup Exec | >= 9.0, <= 10.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/15789Broken Link
- http://securitytracker.com/id?1014273Broken LinkThird Party AdvisoryVDB Entry
- http://seer.support.veritas.com/docs/276533.htmBroken Link
- http://seer.support.veritas.com/docs/277485.htmBroken Link
- http://www.idefense.com/application/poi/display?id=270&type=vulnerabilities&flasBroken LinkVendor Advisory
- http://www.idefense.com/application/poi/display?id=271&type=vulnerabilitiesBroken Link
- http://secunia.com/advisories/15789Broken Link
- http://securitytracker.com/id?1014273Broken LinkThird Party AdvisoryVDB Entry
- http://seer.support.veritas.com/docs/276533.htmBroken Link
- http://seer.support.veritas.com/docs/277485.htmBroken Link
- http://www.idefense.com/application/poi/display?id=270&type=vulnerabilities&flasBroken LinkVendor Advisory
- http://www.idefense.com/application/poi/display?id=271&type=vulnerabilitiesBroken Link
FAQ
What is CVE-2005-0772?
CVE-2005-0772 is a vulnerability with a CVSS score of 7.5 (HIGH). VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet i...
How severe is CVE-2005-0772?
CVE-2005-0772 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0772?
Check the references section above for vendor advisories and patch information. Affected products include: Veritas Backup Exec.