Intrusion Prevention



This indicates an attempt to exploit a heap overflow vulnerability in Symantec VERITAS Storage Foundation.
The vulnerability is caused by a boundry error in vxvea3.dll that occurs when handling a malformed udp packet sent to udp port 3207(administrator service). It allows remote attackers to cause memory corruption or execute arbitrary code via a specially crafted udp packet.

Affected Products

Veritas Storage Foundation 5.0


System Compromise: remote attackers can gain control of vulnerable systems.

Recommended Actions

Refer to the vendor's web site for a suggested workaround.

CVE References