Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2005-0773

Stack-based buffer overflow in VERITAS Backup Exec Remote Agent 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for Netware allows remote attackers to execute arbitrary code via a CONNECT_CLIENT_AUTH request with authentication method type 3 (Windows credentials) and a long password argument.

Security Impact Summary

CVE-2005-0773 is a security vulnerability that . Impacting 1 product from symantec_veritas organizations running these solutions should prioritize assessment and patching.

Historical Context

Originally identified in 2005, this vulnerability predates many modern security frameworks and practices. The vulnerability landscape of that era was characterized by different threat models and less mature defense mechanisms compared to contemporary standards.

Published

2005-06-18T04:00:00.000

Last Modified

2026-04-16T00:27:16.627

Status

Modified

Source

[email protected]

Severity

CVSSv2: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	symantec_veritas	backup_exec	9.0.4019	Yes
Application	symantec_veritas	backup_exec	9.0.4170	Yes
Application	symantec_veritas	backup_exec	9.0.4172	Yes
Application	symantec_veritas	backup_exec	9.0.4174	Yes
Application	symantec_veritas	backup_exec	9.0.4202	Yes
Application	symantec_veritas	backup_exec	9.0_rev.4367	Yes
Application	symantec_veritas	backup_exec	9.0_rev.4367_sp1	Yes
Application	symantec_veritas	backup_exec	9.0_rev.4454	Yes
Application	symantec_veritas	backup_exec	9.0_rev.4454_sp1	Yes
Application	symantec_veritas	backup_exec	9.1.306	Yes
Application	symantec_veritas	backup_exec	9.1.307	Yes
Application	symantec_veritas	backup_exec	9.1.1067.2	Yes
Application	symantec_veritas	backup_exec	9.1.1067.3	Yes
Application	symantec_veritas	backup_exec	9.1.1127.1	Yes
Application	symantec_veritas	backup_exec	9.1.1151.1	Yes
Application	symantec_veritas	backup_exec	9.1.1152	Yes
Application	symantec_veritas	backup_exec	9.1.1152.4	Yes
Application	symantec_veritas	backup_exec	9.1.1154	Yes
Application	symantec_veritas	backup_exec	9.1_rev.4691	Yes
Application	symantec_veritas	backup_exec	9.1_rev.4691_sp2	Yes
Application	symantec_veritas	backup_exec	10.0_rev.5484	Yes
Application	symantec_veritas	backup_exec	10.0_rev.5484_sp1	Yes

References

http://secunia.com/advisories/15789 Patch, Vendor Advisory ([email protected])
http://securitytracker.com/id?1014273 Patch ([email protected])
http://seer.support.veritas.com/docs/276604.htm Patch, Vendor Advisory ([email protected])
http://seer.support.veritas.com/docs/277429.htm Patch ([email protected])
http://www.idefense.com/application/poi/display?id=272&type=vulnerabilities&flashstatus=true Vendor Advisory ([email protected])
http://www.kb.cert.org/vuls/id/492105 Patch, Third Party Advisory, US Government Resource ([email protected])
http://www.osvdb.org/17624 ([email protected])
http://www.securityfocus.com/bid/14022 Exploit, Patch ([email protected])
http://www.us-cert.gov/cas/techalerts/TA05-180A.html Patch, Third Party Advisory, US Government Resource ([email protected])
http://secunia.com/advisories/15789 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://securitytracker.com/id?1014273 Patch (af854a3a-2127-422b-91ae-364da2661108)
http://seer.support.veritas.com/docs/276604.htm Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seer.support.veritas.com/docs/277429.htm Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.idefense.com/application/poi/display?id=272&type=vulnerabilities&flashstatus=true Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/492105 Patch, Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/17624 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/14022 Exploit, Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.us-cert.gov/cas/techalerts/TA05-180A.html Patch, Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For symantec_veritas's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.