Unrated severityNVD Advisory· Published Dec 10, 2008· Updated Apr 23, 2026

CVE-2008-5407

Description

Multiple unspecified vulnerabilities in the Backup Exec remote-agent logon process in Symantec Backup Exec for Windows Servers 11.0 (aka 11d) builds 6235 and 7170, 12.0 build 1364, and 12.5 build 2213 allow remote attackers to bypass authentication, and read or delete files, via unknown vectors.

Affected products

Symantec/Backup Exec For Windows Server4 versions
cpe:2.3:a:symantec:backup_exec_for_windows_server:11d:11.0.6235:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:symantec:backup_exec_for_windows_server:11d:11.0.6235:*:*:*:*:*:*
- cpe:2.3:a:symantec:backup_exec_for_windows_server:11d:11.0.7170:*:*:*:*:*:*
- cpe:2.3:a:symantec:backup_exec_for_windows_server:12.0:12.0.1364:*:*:*:*:*:*
- cpe:2.3:a:symantec:backup_exec_for_windows_server:12.5:12.5.2213:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/32810nvdPatchVendor Advisory
securityresponse.symantec.com/avcenter/security/Content/2008.11.19.htmlnvdPatchVendor Advisory
seer.entsupport.symantec.com/docs/314528.htmnvdPatchVendor Advisory
www.securityfocus.com/bid/32347nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2008/3209nvd
exchange.xforce.ibmcloud.com/vulnerabilities/46730nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000