Notified: June 03, 2005 Updated: August 16, 2005
Affected
EMC has created - and made available to customers - a set of guidelines and software patch to better protect against the vulnerability identified in this advisory. The full guidelines are available at: http://www.legato.com/support/websupport/product_alerts/081605_NW_token_authentication.htm An integrated resolution to this vulnerability will be available in the next release of EMC Legato NetWorker, which is planned to be generally available in Q4 of 2005.
The vendor has not provided us with any further information regarding this vulnerability.
US-CERT has no additional comments at this time.
Notified: August 15, 2005 Updated: August 24, 2005
Affected
No statement is currently available from the vendor regarding this vulnerability.
The vendor has not provided us with any further information regarding this vulnerability.
Notified: August 15, 2005 Updated: August 24, 2005
Affected
No statement is currently available from the vendor regarding this vulnerability.
The vendor has not provided us with any further information regarding this vulnerability.
Notified: July 12, 2005 Updated: September 19, 2005
Affected
Sun repackages the Legato Networker product as Sun StorEdge Enterprise Backup, and is affected by the vulnerability described in CERT VU#407641. Sun has published Sun Alert 101866 which is available here: http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1 for this issue. The Sun Alert contains details of patches which have been released for StorEdge Enterprise Backup version 7.1 and StorEdge Enterprise Backup version 7.2, which address this issue.
The vendor has not provided us with any further information regarding this vulnerability.