← volver
CVE-2017-8895

CVE-2017-8895

EPSS 71.0%
In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a use-after-free vulnerability in multiple agents that can lead to a denial of service or remote code execution. An unauthenticated attacker can use this vulnerability to crash the agent or potentially take control of the agent process and then the system it is running on.
Productos afectados
n/a · n/a
PoCs públicas encontradas2
cve_referencewww.exploit-db.com/exploits/42282/no verificadoexploitdbwww.exploit-db.com/exploits/42282no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.exploit-db.com/exploits/42282/https://www.veritas.com/content/support/en_US/security/VTS17-006.html#Issue1http://www.securityfocus.com/bid/98386http://www.securitytracker.com/id/1038561