CVE-2005-0358
First published: Sat Aug 20 2005(Updated: )
EMC Legato NetWorker, Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 6.0 through 7.2 do not properly verify authentication tokens, which allows remote attackers to gain privileges by modifying an authentication token.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| EMC Legato NetWorker | =6.0 | |
| EMC Legato NetWorker | =7.2 | |
| EMC Legato NetWorker | =4.2.2 | |
| Sun Storedge Enterprise Backup Software | =7.0 | |
| Sun Storedge Enterprise Backup Software | =7.1 | |
| Sun Storedge Enterprise Backup Software | =7.2 | |
| Sun Solstice Backup | =6.1 | |
| EMC Legato NetWorker | =7.13 | |
| Sun Solstice Backup | =6.0 | |
| EMC Legato NetWorker | =6.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1
- http://www.kb.cert.org/vuls/id/407641
- http://www.securityfocus.com/bid/14582
- http://www.osvdb.org/18801
- http://securitytracker.com/id?1014713
- http://secunia.com/advisories/16470
- http://secunia.com/advisories/16464
- http://www.legato.com/support/websupport/product_alerts/081605_NW_token_authentication.htm
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21892
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/emc
- canonical/emc legato networker
- version/emc legato networker/6.0
- version/emc legato networker/7.2
- version/emc legato networker/4.2.2
- vendor/sun
- canonical/sun storedge enterprise backup software
- version/sun storedge enterprise backup software/7.0
- version/sun storedge enterprise backup software/7.1
- version/sun storedge enterprise backup software/7.2
- canonical/sun solstice backup
- version/sun solstice backup/6.1
- version/emc legato networker/7.13
- version/sun solstice backup/6.0
- version/emc legato networker/6.1