CVE DATABASE / CVE-2005-0772
CVE-2005-0772
CVSS 7.5 · HIGH
Summary
VERITAS Backup Exec 9.0 through 10.0 for Windows Servers, and 9.0.4019 through 9.1.307 for Netware, allows remote attackers to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
CVSS 3.1 breakdown
| Base score | 7.5 (HIGH) |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Privileges required | NONE |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity | NONE |
| Availability | HIGH |
Weakness type (CWE)
Affected products
Veritas backup exec
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://secunia.com/advisories/15789
- http://securitytracker.com/id?1014273
- http://seer.support.veritas.com/docs/276533.htm
- http://seer.support.veritas.com/docs/277485.htm
- http://www.idefense.com/application/poi/display?id=270&type=vulnerabilities&flashstatus=true
- http://www.idefense.com/application/poi/display?id=271&type=vulnerabilities
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.