HeapOverflow Computer Security Community & Forums : Heap Overflow.com - View Single Post - Veritas Backup Exec Server 10.0.5484 is vulnerable

Thread: Veritas Backup Exec Server 10.0.5484 is vulnerable

View Single Post

#8 (permalink)

Old

26-06-05

class101 is offline

Administrator

Join Date: May 2005

Location: France

Age: 27

Posts: 588

Blog Entries: 3

Thanks: 17

Thanked 6 Times in 6 Posts

Rep Power: 10

class101 has disabled reputation

Send a message via MSN to class101

Default

this is possible to retrieve many infos via the NDMP protocol, you can have datas such:

NDMP CONFIG_GET_HOST_INFO

Code:

00000048  00 00 00 0a 47 56 2d 58  4f 45 52 44 45 58 00 00 ....GV-X OERDEX..
00000058  00 00 00 0a 57 69 6e 64  6f 77 73 20 4e 54 00 00 ....Wind ows NT..
00000068  00 00 00 8d 4d 61 6a 6f  72 20 56 65 72 73 69 6f ....Majo r Versio
00000078  6e 3d 35 20 4d 69 6e 6f  72 20 56 65 72 73 69 6f n=5 Mino r Versio
00000088  6e 3d 30 20 42 75 69 6c  64 20 4e 75 6d 62 65 72 n=0 Buil d Number
00000098  3d 32 31 39 35 20 53 65  72 76 69 63 65 50 61 63 =2195 Se rvicePac
000000A8  6b 20 4d 61 6a 6f 72 3d  34 20 53 65 72 76 69 63 k Major= 4 Servic
000000B8  65 50 61 63 6b 20 4d 69  6e 6f 72 3d 30 20 53 75 ePack Mi nor=0 Su
000000C8  69 74 65 4d 61 73 6b 3d  32 37 34 20 50 72 6f 64 iteMask= 274 Prod
000000D8  75 63 74 54 79 70 65 3d  32 20 50 72 6f 63 65 73 uctType= 2 Proces
000000E8  73 6f 72 54 79 70 65 3d  49 6e 74 65 6c 20 78 38 sorType= Intel x8
000000F8  36 00 00 00 00 00 00 0d  58 58 58 2e 58 58 2e 58 6....... XXX.XX.X
00000108  58 58 2e 58 58 00 00 00                          XX.XX...

look at NDMP Specs. for much informations, this is prolly possible to guess via this way if the server is vulnerable and why not to find much vulnerabilities linked to some other requests

__________________
Security community webmaster
100% Free Directory
100% Cool milw0rm javascript

Reply With Quote