CVE-2006-4128
8.1 High
AI Score
Confidence
High
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.079 Low
EPSS
Percentile
94.2%
Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and 10.1.327.401), and Backup Exec for Windows Server and Remote Agent 9.1 (build 9.1.4691), 10.0 (builds 10.0.5484 and 10.0.5520), and 10.1 (build 10.1.5629) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RPC message.
References
secunia.com/advisories/21472
securityreason.com/securityalert/1380
securityresponse.symantec.com/avcenter/security/Content/2006.08.11.html
securitytracker.com/id?1016683
seer.entsupport.symantec.com/docs/284623.htm
www.kb.cert.org/vuls/id/647796
www.securityfocus.com/archive/1/443037/100/0/threaded
www.securityfocus.com/bid/19479
www.vupen.com/english/advisories/2006/3266
exchange.xforce.ibmcloud.com/vulnerabilities/28336
Related
8.1 High
AI Score
Confidence
High
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.079 Low
EPSS
Percentile
94.2%