CVE-2005-0359
published 2005-08-23CVE-2005-0359: The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the…
medium6.4CVSS 3.1
AVNACLAuNCPINAP
The Legato PortMapper in EMC Legato NetWorker, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup 7.0 through 7.2 does not restrict access to the pmap_set and pmap_unset commands, which allows remote attackers to (1) cause a denial of service by using pmap_unset to un-register a NetWorker service, or (2) obtain sensitive information from NetWorker services by using pmap_set to register a new service.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| emc | legato_networker | — | — |
| emc | legato_networker | — | — |
| emc | legato_networker | — | — |
| emc | legato_networker | — | — |
| emc | legato_networker | — | — |
| sun | solstice_backup | — | — |
| sun | solstice_backup | — | — |
| sun | storedge_enterprise_backup_software | — | — |
| sun | storedge_enterprise_backup_software | — | — |
| sun | storedge_enterprise_backup_software | — | — |