| VID |
210097 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Symantec LiveState Apache Tomcat server is vulnerable to a file upload vulnerability in the FileUpload class. Symantec Backup Exec System Recovery Manager (BESRM) is a backup manager solution. Symantec Backup Exec System Recovery Manager versions 7.0 and 7.0.1 could allow a remote attacker to upload and execute arbitrary JSP files, caused by a vulnerability in the FileUpload Class running on the Symantec LiveState Apache Tomcat server. A remote attacker could exploit this vulnerability using an HTTP POST request to upload arbitrary JSP files and execute arbitrary code on the affected system with SYSTEM privileges.
* References:
http://www.symantec.com/avcenter/security/Content/2008.02.04.html
http://seer.entsupport.symantec.com/docs/297171.htm
http://www.zerodayinitiative.com/advisories/ZDI-08-003.html
http://www.frsirt.com/english/advisories/2008/0413
http://securitytracker.com/alerts/2008/Feb/1019303.html
http://secunia.com/advisories/28787
* Platforms Affected:
Symantec Backup Exec System Recovery Server 7.0
Symantec Backup Exec System Recovery Server 7.0.1
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of Symantec Backup Exec System Recovery Manager (7.0.3 or later), available from the Symantec Web site at https://fileconnect.symantec.com |
| Related URL |
CVE-2008-0457 (CVE) |
| Related URL |
27487 (SecurityFocus) |
| Related URL |
40260 (ISS) |
|
