Intrusion Prevention

Symantec.VERITAS.NetBackup.Buffer.Overflow

Description

This indicates an attempt to exploit a buffer overflow vulnerability in Symantec Veritas NetBackup.
The vulnerability is caused by an error that occurs when the vulnerable software handles overly long requests. It allows a remote attacker to execute arbitrary code via sending a crafted request.

Affected Products

Veritas Software NetBackup Server 6.0
Veritas Software NetBackup Server 5.1
Veritas Software NetBackup Server 5.0
Veritas Software NetBackup Enterprise Server 6.0
Veritas Software NetBackup Enterprise Server 5.1
Veritas Software NetBackup Enterprise Server 5.0
Veritas Software NetBackup Client 6.0
Veritas Software NetBackup Client 5.1
Veritas Software NetBackup Client 5.0

Impact

Arbitrary command execution.
Arbitrary code execution.

Recommended Actions

Vendor has released an advisory with fixes to address this issue. Please see its website for more information.
http://www.symantec.com/