KLA10352 Multiple vulnerabilities in Symantec Backup Exec

Multiple serious vulnerabilities have been found in Symantec Backup Exec. Malicious users can exploit these vulnerabilities to bypass auth, read / delete files, cause denial of service and possibly execute arbitrary code. Below is a complete list of vulnerabilities

1. Vectors related to the remote-agent logon can be exploited remotely;
2. A buffer overflow can be exploited locally.

Original advisories

Related products

VERITAS-Backup-Exec

CVE list

CVE-2008-5408 critical

CVE-2008-5407 critical

Solution

Update to latest version

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

• SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

• WLF

Write Local Files. Exploitation of vulnerabilities with this impact can lead to writing into some inaccessible files. Files that can be read depends on concrete program errors.

• RLF

Read Local Files. Exploitation of vulnerabilities with this impact can lead to reading some inaccessible files. Files that can be read depends on conсrete program errors.

Affected Products

• Symantec Backup Exec for Windows Servers version 11 builds 6235 and 7170Symantec Backup Exec for Windows Servers version 12 build 1364Symantec Backup Exec for Windows Servers version 12.5 build 2213