An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24336. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Secjuice


The only non-profit, independent & volunteer based publication in the information security space. Cybersecurity articles written by hackers!

Listed: