Intrusion PreventionVeritas.NetBackup.Requests.Handling.Buffer.Overflow
Description
This indicates an attempt to exploit a buffer overflow vulnerability in Symantec Veritas NetBackup.
The vulnerability is caused by an error that occurs when the vulnerable software handles overly long requests. It allows a remote attacker to execute arbitrary code via sending a crafted request.
Affected Products
Veritas Software NetBackup Server 6.0
Veritas Software NetBackup Server 5.1
Veritas Software NetBackup Server 5.0
Veritas Software NetBackup Enterprise Server 6.0
Veritas Software NetBackup Enterprise Server 5.1
Veritas Software NetBackup Enterprise Server 5.0
Veritas Software NetBackup Client 6.0
Veritas Software NetBackup Client 5.1
Veritas Software NetBackup Client 5.0
Impact
Arbitrary command execution.
Arbitrary code execution.
Recommended Actions
Vendor has released an advisory with fixes to address this issue. Please see its website for more information.
http://www.symantec.com/
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2023-08-10 | 25.619 | Name:Symantec. VERITAS. NetBackup. Buffer. Overflow:Veritas. NetBackup. Requests. Handling. Buffer. Overflow |
| ID | 13688 |
| Created | Dec 14, 2006 |
| Updated | Aug 09, 2023 |
| Risk |
|
| CVE ID | CVE-2006-6222 CVE-2006-4902 |
| Exploit Prediction Score | 88.45% |
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux, Solaris, Other |
| Affected App | Veritas |