Arbitrary Privileged Command Execution Vulnerability in Veritas NetBackup

Arbitrary Privileged Command Execution Vulnerability in Veritas NetBackup

CVE-2017-6406 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

An issue was discovered in Veritas NetBackup Before 7.7.2 and NetBackup Appliance Before 2.7.2. Arbitrary privileged command execution, using whitelist directory escape with "../" substrings, can occur.

Learn more about our Web Application Penetration Testing UK.