Symantec Veritas产品VRTSweb组件远程代码执行漏洞
来源:岁月联盟
时间:2009-12-15
Symantec Backup Exec CPS 12.5
Symantec Backup Exec CPS 12.0
Symantec Backup Exec CPS 11d
Symantec Veritas NOM 6.0 GA – 6.5.5
Symantec Veritas Backup Reporter 6.0 GA – 6.6
Symantec Veritas SF 3.5
Symantec Veritas SFWHA 5.1AP1
Symantec Veritas SFWHA 5.1
Symantec Veritas SFWHA 5.0RP2
Symantec Veritas SFWHA 5.0RP1a
Symantec Veritas SFWHA 5.0
Symantec Veritas SFWHA 4.3MP2
Symantec Veritas SFHA 3.5
Symantec Veritas SFO 5.0.1
Symantec Veritas SFO 5.0
Symantec Veritas SFO 4.1
Symantec Veritas Storage Foundation 5.0
Symantec Veritas Storage Foundation 4.1
Symantec Veritas Storage Foundation 4.0
Symantec Veritas Storage Foundation 3.5
Symantec Veritas SFM 2.0
Symantec Veritas SFM 1.1.1Win
Symantec Veritas SFM 1.1.1Ux
Symantec Veritas SFM 1.1
Symantec Veritas SFM 1.0 MP1
Symantec Veritas SFM 1.0
Symantec Veritas Cluster Server 5.0
Symantec Veritas Cluster Server 4.1
Symantec Veritas Cluster Server 4.0
Symantec Veritas Cluster Server 3.5
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 37012
CVE ID: CVE-2009-3027
Symantec Veritas是Symantec的备份系列产品家族。
Veritas产品中使用了默认监听于TCP 8181、8443和14300端口上的VRTSweb.exe Web Server组件。这个组件没有正确地验证提交给14300端口的认证请求,远程安全者可以通过提交恶意请求绕过认证,要求进程解压并执行任意WAR文件中的数据,这可能导致以SYSTEM权限执行任意代码。
<*来源:ZDI (http://www.zerodayinitiative.com/)
链接:http://marc.info/?l=bugtraq&m=126039325926346&w=2
http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20091209_00
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Symantec
--------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
http://www.symantec.com/business/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20091209_00
