What is the severity of CVE-2015-6552?

CVE-2015-6552 has a medium severity rating due to its potential for remote exploitation.

How do I fix CVE-2015-6552?

To fix CVE-2015-6552, upgrade Veritas NetBackup and NetBackup Appliance to versions that are patched, such as 7.7.2 or higher for NetBackup and 2.7.2 or higher for NetBackup Appliance.

What versions of Veritas NetBackup are affected by CVE-2015-6552?

The affected versions of Veritas NetBackup include 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2.

Which versions of NetBackup Appliance are vulnerable to CVE-2015-6552?

NetBackup Appliance versions 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, and 2.7.x before 2.7.2 are vulnerable.

Can CVE-2015-6552 be exploited remotely?

Yes, CVE-2015-6552 can be exploited remotely by attackers due to a vulnerability in the management-services protocol implementation.

Vulnerability/
CVE-2015-6552

critical

CWE

284

7/5/2016

6/8/2024

CVE-2015-6552

First published: Sat May 07 2016(Updated: )

The management-services protocol implementation in Veritas NetBackup 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2 and NetBackup Appliance through 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, and 2.7.x before 2.7.2 allows remote attackers to make arbitrary RPC calls via unspecified vectors.

Credit: secure@symantec.com

Affected Software	Affected Version	How to fix
Symantec NetBackup Appliance	=1.1.0.1
Symantec NetBackup Appliance	=1.1.0.2
Symantec NetBackup Appliance	=1.2
Symantec NetBackup Appliance	=2.0
Symantec NetBackup Appliance	=2.0.1
Symantec NetBackup Appliance	=2.0.2
Symantec NetBackup Appliance	=2.0.3
Symantec NetBackup Appliance	=2.5
Symantec NetBackup Appliance	=2.5.1
Symantec NetBackup Appliance	=2.5.2
Symantec NetBackup Appliance	=2.5.3
Symantec NetBackup Appliance	=2.6
Symantec NetBackup Appliance	=2.6.0.2
Symantec NetBackup Appliance	=2.6.0.3
Symantec NetBackup Appliance	=2.6.0.4
Symantec NetBackup Appliance	=2.6.1
Symantec NetBackup Appliance	=2.6.1.1
Symantec NetBackup Appliance	=2.6.1.2
Symantec NetBackup Appliance	=2.7.1
NetBackup Enterprise Server	=7.0
NetBackup Enterprise Server	=7.0.1
NetBackup Enterprise Server	=7.1.0.1
NetBackup Enterprise Server	=7.1.0.2
NetBackup Enterprise Server	=7.1.0.3
NetBackup Enterprise Server	=7.1.0.4
NetBackup Enterprise Server	=7.5.0.1
NetBackup Enterprise Server	=7.5.0.3
NetBackup Enterprise Server	=7.5.0.4
NetBackup Enterprise Server	=7.5.0.5
NetBackup Enterprise Server	=7.5.0.6
NetBackup Enterprise Server	=7.5.0.7
NetBackup Enterprise Server	=7.6.0.2
NetBackup Enterprise Server	=7.6.0.3
NetBackup Enterprise Server	=7.6.0.4
NetBackup Enterprise Server	=7.6.1.1
NetBackup Enterprise Server	=7.6.1.2
NetBackup Enterprise Server	=7.7.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-6552?
CVE-2015-6552 has a medium severity rating due to its potential for remote exploitation.
How do I fix CVE-2015-6552?
To fix CVE-2015-6552, upgrade Veritas NetBackup and NetBackup Appliance to versions that are patched, such as 7.7.2 or higher for NetBackup and 2.7.2 or higher for NetBackup Appliance.
What versions of Veritas NetBackup are affected by CVE-2015-6552?
The affected versions of Veritas NetBackup include 7.x through 7.5.0.7, 7.6.0.x through 7.6.0.4, 7.6.1.x through 7.6.1.2, and 7.7.x before 7.7.2.
Which versions of NetBackup Appliance are vulnerable to CVE-2015-6552?
NetBackup Appliance versions 2.5.4, 2.6.0.x through 2.6.0.4, 2.6.1.x through 2.6.1.2, and 2.7.x before 2.7.2 are vulnerable.
Can CVE-2015-6552 be exploited remotely?
Yes, CVE-2015-6552 can be exploited remotely by attackers due to a vulnerability in the management-services protocol implementation.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/author
agent/last-modified-date
agent/severity
agent/event
agent/description
agent/first-publish-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/veritas
canonical/symantec netbackup appliance
version/symantec netbackup appliance/1.1.0.1
version/symantec netbackup appliance/1.1.0.2
version/symantec netbackup appliance/1.2
version/symantec netbackup appliance/2.0
version/symantec netbackup appliance/2.0.1
version/symantec netbackup appliance/2.0.2
version/symantec netbackup appliance/2.0.3
version/symantec netbackup appliance/2.5
version/symantec netbackup appliance/2.5.1
version/symantec netbackup appliance/2.5.2
version/symantec netbackup appliance/2.5.3
version/symantec netbackup appliance/2.6
version/symantec netbackup appliance/2.6.0.2
version/symantec netbackup appliance/2.6.0.3
version/symantec netbackup appliance/2.6.0.4
version/symantec netbackup appliance/2.6.1
version/symantec netbackup appliance/2.6.1.1
version/symantec netbackup appliance/2.6.1.2
version/symantec netbackup appliance/2.7.1
canonical/netbackup enterprise server
version/netbackup enterprise server/7.0
version/netbackup enterprise server/7.0.1
version/netbackup enterprise server/7.1.0.1
version/netbackup enterprise server/7.1.0.2
version/netbackup enterprise server/7.1.0.3
version/netbackup enterprise server/7.1.0.4
version/netbackup enterprise server/7.5.0.1
version/netbackup enterprise server/7.5.0.3
version/netbackup enterprise server/7.5.0.4
version/netbackup enterprise server/7.5.0.5
version/netbackup enterprise server/7.5.0.6
version/netbackup enterprise server/7.5.0.7
version/netbackup enterprise server/7.6.0.2
version/netbackup enterprise server/7.6.0.3
version/netbackup enterprise server/7.6.0.4
version/netbackup enterprise server/7.6.1.1
version/netbackup enterprise server/7.6.1.2
version/netbackup enterprise server/7.7.1