11.0

DATE	CVE	VULNERABILITY TITLE	RISK
2011-05-31	CVE-2011-0546	Improper Input Validation vulnerability in Symantec Backup Exec Symantec Backup Exec 11.0, 12.0, 12.5, 13.0, and 13.0 R2 does not validate identity information sent between the media server and the remote agent, which allows man-in-the-middle attackers to execute NDMP commands via unspecified vectors. high complexity symantec CWE-20	6.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.