Video Screencast Help
Symantec to Separate Into Two Focused, Industry-Leading Technology Companies. Learn more.

CVE Research

Created: 21 Aug 2012 | 3 comments

Can anyone point me to a CVE database for Netbackup and it's associated processes (OpsCenter specifically)?

 

We have two different vulnerabilities to check

 

CVE-2012-0022    http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=...

CVE-2011-4858    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-...

 

Searches on the Symantec website returned null as does google

Comments 3 CommentsJump to latest comment

cgoliver's picture

The version of tomcat bundled with OpsCenterAnalytics is 6.0.29, but that does not neccessarily mean that all the features of 6.0.29 are included.

No answers from Symantec or the community :(

CRZ's picture

Hi Chris,

Sorry!  I haven't been by this forum lately.

OpsCenter 7.5.0.1 includes tomcat 6.0.35 so neither of these vulnerabilities should affect you if you are running 7.5.0.1 or 7.5.0.3.

NetBackup 7.5.0.1 Release Notes
 http://symantec.com/docs/DOC5429

Refer to page 58 (Etrack 2711164).

tomcat 6.0.35 is also included in OpsCenter 7.1.0.4:

NetBackup 7.1.0.4 Release Notes
 http://symantec.com/docs/DOC5201

Refer to page 64 (Etrack 2671949).

We take security concerns very seriously - we ARE a security company, after all!  If you are ever worried about a particular vulnerability, please open a support case and you should get the information you need right away.


bit.ly/76LBN | APPLBN | 75LBN

cgoliver's picture

We've updated to OpsCenter 7.5.0.3 Therefore we are covered.

 

Thanks for your attention.