Vulnerability Description
NDMP server in Veritas NetBackup 5.1 allows attackers to cause a denial of service via a CONFIG message with an out-of-range timestamp, which triggers a null dereference.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Symantec Veritas | Netbackup Enterprise Server | 5.1 |
| Symantec Veritas | Netbackup Server | 5.1 |
References
- http://secunia.com/advisories/16187Vendor Advisory
- http://www.hat-squad.com/en/000170.htmlVendor Advisory
- http://secunia.com/advisories/16187Vendor Advisory
- http://www.hat-squad.com/en/000170.htmlVendor Advisory
FAQ
What is CVE-2005-2389?
CVE-2005-2389 is a vulnerability with a CVSS score of 5.0 (MEDIUM). NDMP server in Veritas NetBackup 5.1 allows attackers to cause a denial of service via a CONFIG message with an out-of-range timestamp, which triggers a null dereference.
How severe is CVE-2005-2389?
CVE-2005-2389 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2389?
Check the references section above for vendor advisories and patch information. Affected products include: Symantec Veritas Netbackup Enterprise Server, Symantec Veritas Netbackup Server.