EMC Software Information for VU#407641
EMC Legato NetWorker database services use insufficient authentication
- Vendor Information Help Date Notified: 03 Jun 2005
- Statement Date:
- Date Updated: 16 Aug 2005
Status
Affected
Vendor Statement
EMC has created - and made available to customers - a set of
guidelines and software patch to better protect against the
vulnerability identified in this advisory. The full guidelines are
available at:
http://www.legato.com/support/websupport/product_alerts/081605_NW_token_authentication.htm
An integrated resolution to this vulnerability
will be available in the next release of EMC Legato NetWorker, which
is planned to be generally available in Q4 of 2005.
Vendor Information
The vendor has not provided us with any further information regarding this vulnerability.
Vendor References
None
Addendum
US-CERT has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.