CVE-2006-4128: Buffer Overflow
First published: Mon Aug 14 2006(Updated: )
Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and 10.1.327.401), and Backup Exec for Windows Server and Remote Agent 9.1 (build 9.1.4691), 10.0 (builds 10.0.5484 and 10.0.5520), and 10.1 (build 10.1.5629) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RPC message.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Veritas Backup Exec | =10.1.325.6301 | |
| Symantec Veritas Backup Exec | =10.1.326.2501 | |
| Symantec Veritas Backup Exec | =10.1 | |
| Symantec Veritas Backup Exec | =9.1_build9.1.4691 | |
| Symantec Veritas Backup Exec | =9.2 | |
| Symantec Veritas Backup Exec | =10.0 | |
| Symantec Veritas Backup Exec | =10.1_build10.1.5629 | |
| Symantec Veritas Backup Exec | =10.1.326.1401 | |
| Symantec Veritas Backup Exec | =9.1 | |
| Symantec Veritas Backup Exec | =10.1.326.3301 | |
| Symantec Veritas Backup Exec | =10.0_build10.0.5520 | |
| Symantec Veritas Backup Exec | =10.0_build10.0.5484 | |
| Symantec Veritas Backup Exec | =10.1.327.401 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://securityresponse.symantec.com/avcenter/security/Content/2006.08.11.html
- http://seer.entsupport.symantec.com/docs/284623.htm
- http://www.securityfocus.com/bid/19479
- http://securitytracker.com/id?1016683
- http://secunia.com/advisories/21472
- http://www.kb.cert.org/vuls/id/647796
- http://securityreason.com/securityalert/1380
- http://www.vupen.com/english/advisories/2006/3266
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28336
- http://www.securityfocus.com/archive/1/443037/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/symantec veritas
- canonical/symantec veritas backup exec
- version/symantec veritas backup exec/10.1.325.6301
- version/symantec veritas backup exec/10.1.326.2501
- version/symantec veritas backup exec/10.1
- version/symantec veritas backup exec/9.1_build9.1.4691
- version/symantec veritas backup exec/9.2
- version/symantec veritas backup exec/10.0
- version/symantec veritas backup exec/10.1_build10.1.5629
- version/symantec veritas backup exec/10.1.326.1401
- version/symantec veritas backup exec/9.1
- version/symantec veritas backup exec/10.1.326.3301
- version/symantec veritas backup exec/10.0_build10.0.5520
- version/symantec veritas backup exec/10.0_build10.0.5484
- version/symantec veritas backup exec/10.1.327.401