CVE-2011-0547

CWE-1896 documents5 sources

Severity

10.0CRITICAL

EPSS

36.1%

top 2.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Veritas Storage Foundation Symantec Veritas Storage Foundation Cluster File System FOR Oracle RAC Symantec Netbackup Puredisk +1 more

Timeline

PublishedAug 19

Latest updateMay 17

Description

Multiple integer overflows in vxsvc.exe in the Veritas Enterprise Administrator service in Symantec Veritas Storage Foundation 5.1 and earlier, Veritas Storage Foundation Cluster File System (SFCFS) 5.1 and earlier, Veritas Storage Foundation Cluster File System Enterprise for Oracle RAC (SFCFSORAC) 5.1 and earlier, Veritas Dynamic Multi-Pathing (DMP) 5.1, and NetBackup PureDisk 6.5.x through 6.6.1.x allow remote attackers to execute arbitrary code via (1) a crafted Unicode string, related to th…

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages4 packages

▶NVDsymantec/veritas_storage_foundation_cluster_file_system5.1+1

▶NVDsymantec/veritas_storage_foundation5.1+1

▶NVDsymantec/veritas_dynamic_multi-pathing5.1

▶NVDsymantec/netbackup_puredisk7 versions+6

Patches

Patch: www.symantec.com ↗Patch: www.symantec.com ↗

🔴Vulnerability Details

GHSA

GHSA-vphj-72pj-3m7c: Multiple integer overflows in vxsvc↗2022-05-17

▶

CVEList

CVE-2011-0547: Multiple integer overflows in vxsvc↗2011-08-19

▶

📋Vendor Advisories

Red Hat

cifs-utils: mount.cifs incorrect fix for CVE-2010-0547↗2011-07-29

▶

💬Community

Bugzilla

CVE-2011-2724 samba, cifs-utils (mount.cifs): check_newline returns EX_USAGE on error, not -1 (incomplete fix for CVE-2010-0547) [fedora-all]↗2011-07-29

▶