Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2009-3027

Disclosure Date: December 11, 2009
CVE-2009-3027
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

VRTSweb.exe in VRTSweb in Symantec Backup Exec Continuous Protection Server (CPS) 11d, 12.0, and 12.5; Veritas NetBackup Operations Manager (NOM) 6.0 GA through 6.5.5; Veritas Backup Reporter (VBR) 6.0 GA through 6.6; Veritas Storage Foundation (SF) 3.5; Veritas Storage Foundation for Windows High Availability (SFWHA) 4.3MP2, 5.0, 5.0RP1a, 5.0RP2, 5.1, and 5.1AP1; Veritas Storage Foundation for High Availability (SFHA) 3.5; Veritas Storage Foundation for Oracle (SFO) 4.1, 5.0, and 5.0.1; Veritas Storage Foundation for DB2 4.1 and 5.0; Veritas Storage Foundation for Sybase 4.1 and 5.0; Veritas Storage Foundation for Oracle Real Application Cluster (SFRAC) 3.5, 4.0, 4.1, and 5.0; Veritas Storage Foundation Manager (SFM) 1.0, 1.0 MP1, 1.1, 1.1.1Ux, 1.1.1Win, and 2.0; Veritas Cluster Server (VCS) 3.5, 4.0, 4.1, and 5.0; Veritas Cluster Server One (VCSOne) 2.0, 2.0.1, and 2.0.2; Veritas Application Director (VAD) 1.1 and 1.1 Platform Expansion; Veritas Cluster Server Management Console (VCSMC) 5.1, 5.5, and 5.5.1; Veritas Storage Foundation Cluster File System (SFCFS) 3.5, 4.0, 4.1, and 5.0; Veritas Storage Foundation Cluster File System for Oracle RAC (SFCFS RAC) 5.0; Veritas Command Central Storage (CCS) 4.x, 5.0, and 5.1; Veritas Command Central Enterprise Reporter (CC-ER) 5.0 GA, 5.0 MP1, 5.0 MP1RP1, and 5.1; Veritas Command Central Storage Change Manager (CC-SCM) 5.0 and 5.1; and Veritas MicroMeasure 5.0 does not properly validate authentication requests, which allows remote attackers to trigger the unpacking of a WAR archive, and execute arbitrary code in the contained files, via crafted data to TCP port 14300.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
n/a
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

  • symantec

Products

  • backup exec continuous protection server 11d,
  • backup exec continuous protection server 12.0,
  • backup exec continuous protection server 12.5,
  • veritas application director 1.1,
  • veritas backup exec 11d,
  • veritas backup exec 12.0,
  • veritas backup exec 12.5,
  • veritas cluster server 3.5,
  • veritas cluster server 4.0,
  • veritas cluster server 4.1,
  • veritas cluster server 5.0,
  • veritas cluster server management console 5.1,
  • veritas cluster server management console 5.5,
  • veritas cluster server management console 5.5.1,
  • veritas cluster server one 2.0,
  • veritas cluster server one 2.0.1,
  • veritas cluster server one 2.0.2,
  • veritas command central enterprise reporter 5.0 ga,
  • veritas command central enterprise reporter 5.0mp1,
  • veritas command central enterprise reporter 5.0mp1rp1,
  • veritas command central enterprise reporter 5.1,
  • veritas command central storage 4.x,
  • veritas command central storage 5.0,
  • veritas command central storage 5.1,
  • veritas command central storage change manager 5.0,
  • veritas command central storage change manager 5.1,
  • veritas micromeasure 5.0,
  • veritas netbackup operations manager 6.0 ga,
  • veritas netbackup operations manager 6.5.5,
  • veritas netbackup reporter 6.0 ga,
  • veritas netbackup reporter 6.6,
  • veritas storae foundation 3.5 onwards,
  • veritas storage foundation 3.5,
  • veritas storage foundation cluster file system 3.5,
  • veritas storage foundation cluster file system 4.0,
  • veritas storage foundation cluster file system 4.1,
  • veritas storage foundation cluster file system 5.0,
  • veritas storage foundation cluster file system for oracle rac 5.0,
  • veritas storage foundation for db2 4.1,
  • veritas storage foundation for db2 5.0,
  • veritas storage foundation for high availability 3.5,
  • veritas storage foundation for oracle 4.1,
  • veritas storage foundation for oracle 5.0,
  • veritas storage foundation for oracle 5.0.1,
  • veritas storage foundation for oracle real application cluster 3.5,
  • veritas storage foundation for oracle real application cluster 4.0,
  • veritas storage foundation for oracle real application cluster 4.1,
  • veritas storage foundation for oracle real application cluster 5.0,
  • veritas storage foundation for sybase 4.1,
  • veritas storage foundation for sybase 5.0,
  • veritas storage foundation for windows high availability 4.3mp2,
  • veritas storage foundation for windows high availability 5.0,
  • veritas storage foundation for windows high availability 5.0rp1a,
  • veritas storage foundation for windows high availability 5.0rp2,
  • veritas storage foundation for windows high availability 5.1,
  • veritas storage foundation for windows high availability 5.1ap1,
  • veritas storage foundation manager 1.0,
  • veritas storage foundation manager 1.0mp1,
  • veritas storage foundation manager 1.1,
  • veritas storage foundation manager 1.1.1ux,
  • veritas storage foundation manager 1.1.1win,
  • veritas storage foundation manager 2.0

References

Canonical
CVE-2009-3027 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3027)
BID-37012 (http://www.securityfocus.com/bid/37012)
Advisory
SSRT090253 (http://marc.info?l=bugtraq&m=126046186917330&w=2)
http://seer.entsupport.symantec.com/docs/337930.htm
ADV-2009-3467 (http://www.vupen.com/english/advisories/2009/3467)
SECUNIA-37637 (http://secunia.com/advisories/37637)
http://seer.entsupport.symantec.com/docs/337279.htm
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7986
SECTRACK-1023309 (http://securitytracker.com/id?1023309)
OSVDB-60884 (http://www.osvdb.org/60884)
http://seer.entsupport.symantec.com/docs/337859.htm
SECTRACK-1023318 (http://www.securitytracker.com/id?1023318)
SECUNIA-37685 (http://secunia.com/advisories/37685)
http://seer.entsupport.symantec.com/docs/337392.htm
SECTRACK-1023312 (http://securitytracker.com/id?1023312)
SECUNIA-37631 (http://secunia.com/advisories/37631)
ADV-2009-3483 (http://www.vupen.com/english/advisories/2009/3483)
SECTRACK-1023313 (http://www.securitytracker.com/id?1023313)
XF-multiple-symantec-vrtsweb-code-execution(54665) (https://exchange.xforce.ibmcloud.com/vulnerabilities/54665)
20091209 ZDI-09-098: Symantec Multiple Products VRTSweb.exe Remote Code Execution Vulnerability (http://www.securityfocus.com/archive/1/508358/100/0/threaded)
SECTRACK-1023311 (http://www.securitytracker.com/id?1023311)
http://seer.entsupport.symantec.com/docs/337293.htm
http://seer.entsupport.symantec.com/docs/336988.htm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2009&suid=20091209_00
Miscellaneous
http://www.zerodayinitiative.com/advisories/ZDI-09-098

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis