Signature Detail
Short Name |
APP:SYMC:BACKUP-EXEC |
|---|---|
Severity |
High |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Symantec Backup Exec System Recovery Manager Unauthorized File Upload |
Release Date |
2011/12/20 |
Update Number |
2051 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+ |
APP: Symantec Backup Exec System Recovery Manager Unauthorized File Upload
A file upload vulnerability exists in the Symantec Backup Exec System Recovery Manager. The vulnerability is due to design weakness in the Tomcat service and can be exploited by remote attackers to upload arbitrary files into the system, potentially compromising the vulnerable system. Successful attack may upload JSP script to the target server's web directories. The behaviour of the system is dependent on the nature of the code. Any code injected into the vulnerable component would execute in the security context of the service process.
Extended Description
Symantec Backup Exec System Recovery Manager is prone to a vulnerability that allows arbitrary unauthorized files to be uploaded to any location on the affected server. This issue resides in the Symantec LiveState Apache Tomcat server. Attackers can leverage it to execute arbitrary code with SYSTEM-level privileges and completely compromise affected computers.
Affected Products
- Symantec Backup Exec System Recovery Manager 7.0
- Symantec Backup Exec System Recovery Manager 7.0.1
References
- BugTraq: 27487
- CVE: CVE-2008-0457