Security advisory Aug 16, 2006

 

Symantec Backup Exec Multiple Heap Overflow Vulnerabilities

 

There is a new vulnerability detected in Backup Exec which is remotely exploitable. The versions affected are listed below with the solution and references. Please update the affected systems especially the ones exposed to the Internet first.

 

 

Remote:  Yes 

 

Local:  No 

 

Published:  Aug 11 2006 12:00AM 

 

Updated:  Aug 14 2006 10:50PM 

 

 

Vulnerable:

 

Symantec Backup Exec for Windows Server Remote Agent 9.1 Build 9.1.4691 Symantec Backup Exec for Windows Server Remote Agent 9.1 Symantec Backup Exec for Windows Server Remote Agent 10.1 Build 10.1.5629 Symantec Backup Exec for Windows Server Remote Agent 10.1 Symantec Backup Exec for Windows Server Remote Agent 10.0 Build 10.0.5520 Symantec Backup Exec for Windows Server Remote Agent 10.0 Build 10.0.5484 Symantec Backup Exec for Windows Server Remote Agent 10.0 Symantec Backup Exec for Netware Servers Remote Agent 9.2 Symantec Backup Exec for Netware Servers Remote Agent 9.1 Symantec Backup Exec Continuous Protection Server 10.1.327 .401 Symantec Backup Exec Continuous Protection Server 10.1.326 .3301 Symantec Backup Exec Continuous Protection Server 10.1.326 .2501 Symantec Backup Exec Continuous Protection Server 10.1.326 .2501 Symantec Backup Exec Continuous Protection Server 10.1.326 .1401 Symantec Backup Exec Continuous Protection Server 10.1.325 .6301

 

 

Solution:

 

Symantec has released an advisory and fixes to address these issues. Please see the referenced advisory for more information

 

References:

 

SYM06-014: Symantec Backup Exec for Windows Server: RPC Interface Heap Overflow, (Symantec) http://www.symantec.com/avcenter/security/Content/2006.08.11.html

 

 

Symantec Security Advisory SYM06-014 - Backup Exec for NetWare Servers Remote Ag (Symantec)

 

http://www.securityfocus.com/bid/19479/references

 

See all DOIT InfoSec advisories at http://www.doit.ri.gov/security/advisories web site.