Knox Software
Products
4- 5 CVEs
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
8| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2005-0496 | Cri | 0.64 | 9.8 | 0.03 | Feb 21, 2005 | Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands. | |
| CVE-2001-0967 | Cri | 0.64 | 9.8 | 0.00 | Aug 31, 2001 | Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing. | |
| CVE-2015-7709 | 0.10 | — | 0.88 | Oct 5, 2015 | The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation. | ||
| CVE-2005-0491 | 0.10 | — | 0.84 | May 2, 2005 | Stack-based buffer overflow in Knox Arkeia Server Backup 5.3.x allows remote attackers to execute arbitrary code via a long type 77 request. | ||
| CVE-1999-1534 | 0.03 | — | 0.00 | Sep 23, 1999 | Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environmental variable. | ||
| CVE-2001-0968 | 0.00 | — | 0.01 | Aug 31, 2001 | Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by default, which allows local and remote users to gain privileges. | ||
| CVE-2001-0988 | 0.00 | — | 0.00 | Jul 23, 2001 | Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions, which could allow local users to overwrite the files or obtain sensitive information. | ||
| CVE-1999-0788 | 0.00 | — | 0.01 | Sep 26, 1999 | Arkiea nlservd allows remote attackers to conduct a denial of service. |
- risk 0.64cvss 9.8epss 0.03
Arkeia Network Backup Client 5.x contains hard-coded credentials that effectively serve as a back door, which allows remote attackers to access the file system and possibly execute arbitrary commands.
- risk 0.64cvss 9.8epss 0.00
Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password guessing.
- CVE-2015-7709Oct 5, 2015risk 0.10cvss —epss 0.88
The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.
- CVE-2005-0491May 2, 2005risk 0.10cvss —epss 0.84
Stack-based buffer overflow in Knox Arkeia Server Backup 5.3.x allows remote attackers to execute arbitrary code via a long type 77 request.
- CVE-1999-1534Sep 23, 1999risk 0.03cvss —epss 0.00
Buffer overflow in (1) nlservd and (2) rnavc in Knox Software Arkeia backup product allows local users to obtain root access via a long HOME environmental variable.
- CVE-2001-0968Aug 31, 2001risk 0.00cvss —epss 0.01
Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by default, which allows local and remote users to gain privileges.
- CVE-2001-0988Jul 23, 2001risk 0.00cvss —epss 0.00
Arkeia backup server 4.2.8-2 and earlier creates its database files with world-writable permissions, which could allow local users to overwrite the files or obtain sensitive information.
- CVE-1999-0788Sep 26, 1999risk 0.00cvss —epss 0.01
Arkiea nlservd allows remote attackers to conduct a denial of service.