CVE-2008-4339

Name of the Vulnerable Software and Affected Versions: Symantec Veritas NetBackup Server versions 5.1 through 5.1 before MP7 Symantec Veritas NetBackup Server versions 6.0 through 6.0 before MP7 Symantec Veritas NetBackup Enterprise Server versions 5.1 through 5.1 before MP7 Symantec Veritas NetBackup Enterprise Server versions 6.0 through 6.0 before MP7 Symantec Veritas NetBackup Server version 6.5 through 6.5.1 Symantec Veritas NetBackup Enterprise Server version 6.5 through 6.5.1

Description: The issue allows remote authenticated users to gain privileges via unknown attack vectors related to "bpjava* binaries" in the Java Administration GUI (jnbSA).

Recommendations: For Symantec Veritas NetBackup Server versions 5.1 through 5.1 before MP7, update to MP7 or later. For Symantec Veritas NetBackup Server versions 6.0 through 6.0 before MP7, update to MP7 or later. For Symantec Veritas NetBackup Enterprise Server versions 5.1 through 5.1 before MP7, update to MP7 or later. For Symantec Veritas NetBackup Enterprise Server versions 6.0 through 6.0 before MP7, update to MP7 or later. For Symantec Veritas NetBackup Server version 6.5 through 6.5.1, update to version 6.5.2 or later. For Symantec Veritas NetBackup Enterprise Server version 6.5 through 6.5.1, update to version 6.5.2 or later.