Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2005-2080

Unknown vulnerability in Remote Agent for Windows Servers (RAWS) in VERITAS Backup Exec 9.0 through 10.0 for Windows, and 9.0.4019 through 9.1.307 for NetWare, allows remote attackers to gain privileges by copying the handle for the server.

Security Impact Summary

CVE-2005-2080 is a security vulnerability that . Impacting 1 product from symantec_veritas organizations running these solutions should prioritize assessment and patching.

Historical Context

Originally identified in 2005, this vulnerability predates many modern security frameworks and practices. The vulnerability landscape of that era was characterized by different threat models and less mature defense mechanisms compared to contemporary standards.

Published

2005-06-29T04:00:00.000

Last Modified

2026-04-16T00:27:16.627

Status

Modified

Source

[email protected]

Severity

CVSSv2: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	symantec_veritas	backup_exec	9.0	Yes
Application	symantec_veritas	backup_exec	9.0.4019	Yes
Application	symantec_veritas	backup_exec	9.0.4170	Yes
Application	symantec_veritas	backup_exec	9.0.4172	Yes
Application	symantec_veritas	backup_exec	9.0.4174	Yes
Application	symantec_veritas	backup_exec	9.0.4202	Yes
Application	symantec_veritas	backup_exec	9.1	Yes
Application	symantec_veritas	backup_exec	9.1.306	Yes
Application	symantec_veritas	backup_exec	9.1.307	Yes
Application	symantec_veritas	backup_exec	9.1.1067.2	Yes
Application	symantec_veritas	backup_exec	9.1.1067.3	Yes
Application	symantec_veritas	backup_exec	9.1.1127.1	Yes
Application	symantec_veritas	backup_exec	9.1.1151.1	Yes
Application	symantec_veritas	backup_exec	9.1.1152	Yes
Application	symantec_veritas	backup_exec	9.1.1152.4	Yes
Application	symantec_veritas	backup_exec	9.1.1154	Yes
Application	symantec_veritas	backup_exec	10.0	Yes

References

http://secunia.com/advisories/15789 Patch, Vendor Advisory ([email protected])
http://seer.support.veritas.com/docs/276608.htm Patch, Vendor Advisory ([email protected])
http://seer.support.veritas.com/docs/277429.htm Patch ([email protected])
http://www.securityfocus.com/bid/14026 ([email protected])
http://secunia.com/advisories/15789 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seer.support.veritas.com/docs/276608.htm Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://seer.support.veritas.com/docs/277429.htm Patch (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/14026 (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For symantec_veritas's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.