EMC Software Affected

Notified:  June 03, 2005 Updated: August 16, 2005

Status

Affected

Vendor Statement

EMC has created - and made available to customers - a set of guidelines and software patch to better protect against the vulnerability identified in this advisory. The full guidelines are available at: http://www.legato.com/support/websupport/product_alerts/081605_NW_token_authentication.htm An integrated resolution to this vulnerability will be available in the next release of EMC Legato NetWorker, which is planned to be generally available in Q4 of 2005.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

US-CERT has no additional comments at this time.

Fujitsu Limited Affected

Notified:  August 15, 2005 Updated: August 24, 2005

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

NEC Affected

Notified:  August 15, 2005 Updated: August 24, 2005

Status

Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Sun Microsystems, Inc. Affected

Notified:  July 12, 2005 Updated: September 19, 2005

Status

Affected

Vendor Statement

Sun repackages the Legato Networker product as Sun StorEdge Enterprise Backup, and is affected by the vulnerability described in CERT VU#407641. Sun has published Sun Alert 101866 which is available here: http://sunsolve.sun.com/search/document.do?assetkey=1-26-101886-1 for this issue. The Sun Alert contains details of patches which have been released for StorEdge Enterprise Backup version 7.1 and StorEdge Enterprise Backup version 7.2, which address this issue.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.