Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 uses weak permissions (Everyone: Read and Everyone: Change) for backup data files, which allows local users to obtain sensitive information or modify the outcome of a restore via direct access to these files.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Backup_exec | Symantec | 2010 | 2010 |
Backup_exec | Symantec | 2010_r3 | 2010_r3 |
Backup_exec | Symantec | 2010_r3 | 2010_r3 |
Backup_exec | Symantec | 2012 | 2012 |
Backup_exec | Symantec | 2012 | 2012 |