Veritas NetBackup 7.7.x / 8.0.x Multiple Vulnerabilities (VTS17-004)

This script is Copyright (C) 2017 Tenable Network Security, Inc.


Synopsis :

A back-up management application installed on the remote host is
affected by multiple vulnerabilities.

Description :

The Veritas NetBackup application installed on the remote Windows host
is 7.7.x or 8.0.x and may be missing a vendor-supplied security
hotfix. It is, therefore, affected by multiple vulnerabilities :

- A remote command execution vulnerability exists in the
bprd process due to improper directory whitelisting
protections. An unauthenticated, remote attacker can
exploit this to execute arbitrary commands with root or
administrator privileges. (CVE-2017-8856)

- A remote command execution vulnerability exists in the
bprd process due to a flaw that allows copying arbitrary
files on any NetBackup host in the master server domain.
An unauthenticated, remote attacker can exploit this to
execute arbitrary commands with root or administrator
privileges. (CVE-2017-8857)

- A remote code execution vulnerability exists in the bprd
process due to a flaw that allows the writing of
arbitrary files to a host in the master server domain.
An unauthenticated, remote attacker can exploit this to
execute arbitrary code. (CVE-2017-8858)

Note that Nessus has not checked to see if an available Emergency
Engineering Binary (EEB) or hotfix was applied.

See also :

https://www.veritas.com/content/support/en_US/security/VTS17-004.html
https://www.veritas.com/support/en_US/article.000126389

Solution :

Apply the Emergency Engineering Binary (EEB) / security hotfix as
referenced in the vendor advisory.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.4
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 100272 ()

Bugtraq ID: 98379
98381
98384

CVE ID: CVE-2017-8856
CVE-2017-8857
CVE-2017-8858

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now