Lucene search
SAINT CorporationSAINT:7474F5BED190CA006C7AE1E026BDE7A7HistoryApr 07, 2006 - 12:00 a.m.
VERITAS Backup Exec Agent Browser hostname buffer overflow
2006-04-0700:00:00
SAINT Corporation
download.saintcorporation.com
22
0.95 High
EPSS
Percentile
99.3%
Added: 04/07/2006
CVE: CVE-2004-1172
BID: 11974
OSVDB: 12418
Background
VERITAS Backup Exec for Windows is a data backup and recovery solution.
Problem
A buffer overflow in the VERITAS Backup Exec Agent Browser allows a remote attacker to execute commands by sending a long, specially crafted hostname in a registration request.
Resolution
Apply the hotfix referenced in VERITAS support document 273419.
References
<http://www.kb.cert.org/vuls/id/907729>
<http://www.idefense.com/intelligence/vulnerabilities/display.php?id=169>
Limitations
Exploit works on VERITAS Backup Exec 9.1.
Platforms
Windows
Related
saint
saint
VERITAS Backup Exec Agent Browser hostname buffer overflow
2006-04-07 00:00:00
VERITAS Backup Exec Agent Browser hostname buffer overflow
2006-04-07 00:00:00
VERITAS Backup Exec Agent Browser hostname buffer overflow
2006-04-07 00:00:00
openvas
openvas
VERITAS Backup Exec Agent Browser Remote Buffer Overflow Vulnerability
2012-10-11 00:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
nessus
nessus
cve
cve
CVE-2004-1172
2005-01-10 05:00:00
cvelist
cvelist
CVE-2004-1172
2004-12-22 05:00:00
cert
cert
Veritas Backup Exec registration request buffer overflow
2005-01-14 00:00:00
nvd
nvd
CVE-2004-1172
2005-01-10 05:00:00
packetstorm
packetstorm
Veritas Backup Exec Name Service Overflow
2009-11-26 00:00:00