CVE-2006-5822

CVE-2006-5822 affects Symantec Veritas NetBackup bpcd daemon (bpcd.exe). The vulnerability is a boundary/buffer overflow in handling overly long CONNECT_OPTIONS requests to NetBackup Master/Media Servers (bpcd listens on 13782/tcp). Exploitation can allow remote code execution with the privileges...

Multiple Symantec Veritas NetBackup security vulnerabilities

CONNECTOPTIONS and oversized requests to bpcd.exe buffer overflows...

ZDI-06-050: Symantec Veritas NetBackup CONNECT_OPTIONS Buffer Overflow Vulnerability

ZDI-06-050: Symantec Veritas NetBackup CONNECTOPTIONS Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-050.html December 13, 2006 -- CVE ID: CVE-2006-5822 -- Affected Vendor: Symantec -- Affected Products: Veritas NetBackup 6.0 MP4 Veritas NetBackup 5.1 MP6 Veritas...

Veritas NetBackup BPCD守护程序多个远程安全漏洞

Veritas NetBackup是大型的数据备份应用系统。 Veritas NetBackup的bpcd.exe在解析提交给NetBackup Master/Media Server的超长请求时存在栈溢出漏洞，如果发送给这个进程的通讯前缀为畸形长度的话，就会触发这个溢出，导致执行任意指令。 bpcd.exe在解析提交给NetBackup Master/Media Server的超长CONNECTOPTIONS请求时存在另一个栈溢出。在解析过程中，未经长度检查便执行了拷贝操作，导致执行任意指令。...

ZDI-06-049: Symantec Veritas NetBackup Long Request Buffer Overflow Vulnerability

ZDI-06-049: Symantec Veritas NetBackup Long Request Buffer Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-06-049.html December 13, 2006 -- CVE ID: CVE-2006-6222 -- Affected Vendor: Symantec -- Affected Products: Veritas NetBackup 6.0 MP4 Veritas NetBackup 5.1 MP6 Veritas...

Symantec Veritas NetBackup Long Request Buffer Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Symantec Veritas NetBackup. Authentication is not required to exploit this vulnerability. The specific flaw exists within bpcd.exe during the parsing of overly long requests to a NetBackup Master/Media...

Symantec Veritas NetBackup CONNECT_OPTIONS Buffer Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Symantec Veritas NetBackup. Authentication is not required to exploit this vulnerability. The specific flaw exists within bpcd.exe during the parsing of overly long CONNECTOPTIONS requests to a NetBackup...

Symantec NetBackup PureDisk验证绕过漏洞

Symantec Veritas NetBackup PureDisk Remote Office Edition是一款备份解决方案。 Symantec Veritas NetBackup PureDisk Remote Office Edition存在验证绕过问题，远程攻击者可以利用漏洞对系统的管理员访问，导致控制整个系统。 Symantec Veritas NetBackup PureDisk管理接口存在特权提升问题，管理接口只能通过SSL WEB连接，但是能访问网络和运行此管理程序主机的非特权用户，可绕过管理接口验证并提升特权，导致完全控制系统，目前没有详细漏洞细节提供。...

Solaris 9 (sparc) : 119007-01

NetBackup 5.1 UNIX server and client fix. Date this patch was last updated by Sun : Nov/10/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...

Solaris 8 (sparc) : 119007-01

NetBackup 5.1 UNIX server and client fix. Date this patch was last updated by Sun : Nov/10/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...

Solaris 7 (sparc) : 119007-01

NetBackup 5.1 UNIX server and client fix. Date this patch was last updated by Sun : Nov/10/05 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if...

CVE-2006-4228

Symantec Veritas NetBackup PureDisk Remote Office Edition 6.0 before MP1 20060816 allows remote attackers to bypass authentication and gain privileges via unknown attack vectors in the management interface...

CVE-2006-4228

Symantec Veritas NetBackup PureDisk Remote Office Edition 6.0 before MP1 20060816 allows remote attackers to bypass authentication and gain privileges via unknown attack vectors in the management interface...

CVE-2006-4228

Symantec Veritas NetBackup PureDisk Remote Office Edition 6.0 before MP1 (20060816) is affected. An unauthenticated, remote attacker can bypass authentication and gain privileges via unknown attack vectors in the management interface. Product: NetBackup PureDisk Remote Office Edition 6.0; conditi...

SYM06-16 Symantec NetBackup PureDisk Remote Office Edition Elevation of Privilege

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Symantec Security Advisory SYM06-015 16 August 2006 Symantec NetBackup PureDisk: Non-Privileged User Authentication Bypass Elevation of Privilege Revision History None Severity Medium highly dependent on network configuration Remote Access Yes Local...

Symantec Veritas NetBackup 6.0 PureDisk Remote Office Edition authentication bypass

No description provided...

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...

VERITAS NetBackup vnetd bpspsserver buffer overflow

Added: 04/14/2006 CVE: CVE-2006-0991 BID: 17264 OSVDB: 24170 Background VERITAS NetBackup is a backup and recovery solution for multiple platforms. Problem A buffer overflow in bpspsserver allows a remote attacker to execute arbitrary commands by sending a specially crafted Request Service messag...