Detections
Analytics

Veritas NetBackup 7.7.x / 8.0.x Multiple Vulnerabilities (VTS17-004)

critical Nessus Plugin ID 100272

Language:

Synopsis

A back-up management application installed on the remote host is affected by multiple vulnerabilities.

Description

The Veritas NetBackup application installed on the remote Windows host is 7.7.x or 8.0.x and may be missing a vendor-supplied security hotfix. It is, therefore, affected by multiple vulnerabilities :

 - A remote command execution vulnerability exists in the bprd process due to improper directory whitelisting protections. An unauthenticated, remote attacker can exploit this to execute arbitrary commands with root or administrator privileges. (CVE-2017-8856)

 - A remote command execution vulnerability exists in the bprd process due to a flaw that allows copying arbitrary files on any NetBackup host in the master server domain.
 An unauthenticated, remote attacker can exploit this to execute arbitrary commands with root or administrator privileges. (CVE-2017-8857)

 - A remote code execution vulnerability exists in the bprd process due to a flaw that allows the writing of arbitrary files to a host in the master server domain.
 An unauthenticated, remote attacker can exploit this to execute arbitrary code. (CVE-2017-8858)

Note that Nessus has not checked to see if an available Emergency Engineering Binary (EEB) or hotfix was applied.

Solution

Apply the Emergency Engineering Binary (EEB) / security hotfix as referenced in the vendor advisory.

See Also

https://www.veritas.com/content/support/en_US/security/VTS17-004.html

https://www.veritas.com/support/en_US/article.000126389

Plugin Details

Severity: Critical

ID: 100272

File Name: veritas_netbackup_VTS17-004.nasl

Version: 1.6

Type: local

Agent: windows

Family: Windows

Published: 5/18/2017

Updated: 5/29/2023

Configuration: Enable paranoid mode

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2017-8858

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:veritas:netbackup

Required KB Items: Settings/ParanoidReport, installed_sw/NetBackup

Exploit Ease: No known exploits are available

Patch Publication Date: 5/7/2017

Vulnerability Publication Date: 5/7/2017

Reference Information

CVE: CVE-2017-8856, CVE-2017-8857, CVE-2017-8858

BID: 98379, 98381, 98384

IAVA: 2017-A-0152-S