CVE-2007-6016

Multiple stack-based buffer overflows in the PVATLCalendar.PVCalendar.1 ActiveX control in pvcalendar.ocx in the scheduler component in the Media Server in Symantec Backup Exec for Windows Server BEWS 11d 11.0.6235 and 11.0.7170, and 12.0 12.0.1364, allow remote attackers to execute arbitrary cod...

CVE-2007-6017

The PVATLCalendar.PVCalendar.1 ActiveX control (pvcalendar.ocx) in the Media Server component of Symantec Backup Exec for Windows Server (BEWS) 11d/12.0 exposes an unsafe Save method. The vulnerability allows a remote attacker to cause a denial of service (browser crash) or to create/overwrite ar...

CVE-2007-4347

Symantec Backup Exec for Windows Servers BEWS 11d (11.0.7170 and 11.0.6.6235) is affected by two integer overflow DoS issues and a NULL pointer dereference in the Job Engine (bengine.exe). A crafted 5633/tcp packet can trigger an infinite loop, causing high CPU/memory usage or service crash. Patc...

CVE-2007-4346

CVE-2007-4346 affects Symantec Backup Exec for Windows Servers BEWS (Job Engine, bengine.exe) on 11d builds 11.0.7170 and 11.0.6.6235. A NULL pointer dereference (and related DoS via integer overflows) can be triggered by specially crafted packets sent to port 5633/TCP, causing the listening serv...

CVE-2007-4347

Multiple integer overflows in the Job Engine bengine.exe service in Symantec Backup Exec for Windows Servers BEWS 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service CPU and memory consumption via a crafted packet to port 5633/tcp, which triggers an infinite lo...