An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24341. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Balwurk Blog


Blog from Balwurk.

Highlights

  • A diverse range of cybersecurity blogs.
Listed: