Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Scheduler Service (VxSchedService.exe) in Symantec Storage Foundation for Windows 5.0 allows remote attackers to bypass authentication and execute arbitrary code via certain requests to the service socket that create (1) PreScript or (2) PostScript registry values under Veritas\VxSvc\CurrentVersion\Schedules specifying future command execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec Storage Foundation调度器服务绕过认证漏洞
Vulnerability Description
Symantec Storage Foundation是一款广泛应用的存储管理平台。 Storage Foundation中默认监听于TCP 4888端口的Windows调度器服务(VxSchedService.exe)中存在安全漏洞,远程攻击者可能利用此漏洞控制服务器。 正常情况下管理员需要通过认证使用管理控制台添加将要运行的调度任务,但如果攻击者能够直接连接到调度器服务并发布命令的话,就可以无须认证添加任务。恶意攻击者可以添加、修改或删除HKEY_LOCAL_MACHINE\Software\Veri
CVSS Information
N/A
Vulnerability Type
N/A