-
CVE-2019-3880 samba: save registry file outside share as unprivileged user
CVE ID CVE-2019-3880 DESCRIPTION A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba share.…
-
CVE-2018-15473 openssh: User enumeration via malformed packets in authentication requests
CVE ID CVE-2018-15473 DESCRIPTION A user enumeration vulnerability flaw was found in OpenSSH, though version 7.7. The vulnerability occurs by not delaying bailout for an invalid authenticated user until after the packet containing the request has been fully parsed. The highest threat from this vulnerability is to data…
-
CVE-2014-2532 openssh: AcceptEnv environment restriction bypass flaw
CVE ID CVE-2014-2532 DESCRIPTION It was found that OpenSSH did not properly handle certain AcceptEnv parameter values with wildcard characters. A remote attacker could use this flaw to bypass intended environment variable restrictions. RESOLUTION * CentOS6 Unitrends' appliances (physical and/or virtual), fixed in Unitrends…
-
CVE-2012-0814 openssh: forced command option information disclosure
CVE ID CVE-2012-0814 DESCRIPTION The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared…
-
OpenSSL fails to update during appliance upgrade
ISSUE After updating the appliance, OpenSSL packages are still listed as requiring an update and/or the update fails with an error. Example of an SSL package showing as needing updating: openssl 1.0.1e-30.el6_6.4 RESOLUTION SSH into the appliance and run the following update command: unitrends-cli post updates If issues…
-
VMware out of memory error (VixDiskLib_Read error: Memory allocation failed. Out of memory.)
ISSUE VMware backups fail or time out after running for a few minutes. In the vprotect logs you can see the error: vix_debug: VixDiskLib: Detected DiskLib error 802 (NBD_ERR_INSUFFICIENT_RESOURCES).VixDiskLib_Read error: Memory allocation failed. Out of memory. So far this issue has been seen in VMware 6.0.RESOLUTION * Add…
-
VSS VOLUME NOT SUPPORTED
ISSUE 01/24/19 15:54:38 : <VSS> Add required backup volumes to snapshot set 01/24/19 15:54:38 : <VSS> IVssBackupComponentsEx4 interface was found 01/24/19 15:54:38 : <VSS> CSV SMB3 (\\zxcv\zxcv\) \\zxcv\zxcv\, <Error> AddVolumesToSnapshotSetEvents: USNAPError! AddToSnapshotSet for volume \\zxcv\zxcv\ failed 8004230c…
-
IPMI - disabling IPMI LAN for DHCP
SUMMARY IPMI - disabling IPMI LAN for DHCP ISSUE IPMI - Intelligent Platform Management Interface Purpose How to configure and disable IPMI for DHCP on Unitrends Recovery-series Appliances Applies To Unitrends Appliances with IPMI-Enabled Motherboards Symptoms / Description IPMI is a firmware level interface that allows…
-
Diagnosing memory errors with IPMI
SUMMARY Diagnosing memory errors with IPMI ISSUE Newer Unitrends DPU platforms use IPMI firmware which can log memory errors. For example: Recovery-712 Recovery-713 Recovery-813 Recovery-822 Recovery-823 Recovery-833-100 Recovery-833-200 Recovery-943 Use IPMI commands to see memory errors in the firmware log. RESOLUTION *…
-
Failed backups report: It appears that the database you are attempting to back up no longer exists or is offline
SUMMARY SQL backups continue to try to run against a database that no longer exists in production or was purposefully taken offline. ISSUE SQL backups continue to try to run against a database that no longer exists in production or was purposefully taken offline. There are 3 potential scenarios:* A single DB was removed…