An issue was discovered in the server in Veritas Enterprise Vault before 15.2, ZDI-CAN-24405. It allows remote attackers to execute arbitrary code because untrusted data, received on a .NET Remoting TCP port, is deserialized.

Wallarm Learning Center


Read interesting articles and news on cybersecurity, application security, and data security. Explore the Wallarm Blog.

Listed: