Description:
Some vulnerabilities have been reported in Symantec Veritas NetBackup, which can be exploited by malicious users to bypass certain security restrictions and by malicious people to overwrite arbitrary files or compromise a vulnerable system.

1) An unspecified error in the JAVA Administration GUI (jnbSA) can be exploited to execute restricted commands with escalated privileges.

Successful exploitation requires a valid user account and GUI access.

2) Multiple vulnerabilities are caused due to an insecure method and various boundary errors present in the PVATLCalendar.PVCalendar.1 (pvcalendar.ocx) ActiveX control.