Intrusion Prevention

Symantec.VERITAS.NetBackup.Vnetd.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in NetBackup Server. The vulnerability is caused by an error when the vulnerable software handles crafted "Request Service" packets that could allow remote attacker to execute arbitrary code.

Affected Products

Veritas Software NetBackup Enterprise Server 6.0
Veritas Software NetBackup Enterprise Server 5.1
Veritas Software NetBackup Enterprise Server 5.0
Veritas Software NetBackup DataCenter 4.5 MP
Veritas Software NetBackup DataCenter 4.5 FP
Veritas Software NetBackup BusinesServer 4.5 MP
Veritas Software NetBackup BusinesServer 4.5 FP

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply patch, available from the web site:
http://seer.support.veritas.com/docs/281521.htm

CVE References

CVE-2006-0991