Secunia Logo  
 Vulnerability IntelligenceVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Veritas NetBackup Multiple Buffer Overflow Vulnerabilities
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Veritas NetBackup Multiple Buffer Overflow Vulnerabilities
Secunia Advisory: SA19417
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2006-03-28
Last Update: 2006-03-30
Popularity: 10,531 views

Critical:
Moderately critical
Impact: System access
Where: From local network
Solution Status: Vendor Patch

Software:VERITAS NetBackup Advanced Client 5.x
VERITAS Netbackup Advanced Client 6.x
VERITAS NetBackup BusinesServer 4.x
VERITAS NetBackup DataCenter 4.x
VERITAS NetBackup Enterprise Server 5.x
VERITAS NetBackup Enterprise Server 6.x
VERITAS NetBackup Server 5.x
VERITAS NetBackup Server 6.x
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2006-0989
CVE-2006-0990
CVE-2006-0991
Description:
Multiple vulnerabilities have been reported in Veritas Netbackup, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerabilities are caused due to boundary errors within the volume manager (vmd) daemon, the NetBackup Catalog (bpdbm) daemon, and the NetBackup Sharepoint Services server (bpspsserver) daemon. These can be exploited to cause buffer overflows when processing incoming, specially crafted packets.

Successful exploitation allows execution of arbitrary code.

The vulnerabilities affect the following products:
* NetBackup Enterprise Server/NetBackup Server; Server and Clients 6.0 (all platforms)
* NetBackup Enterprise Server/NetBackup Server; Server and Clients 5.1 (all platforms)
* NetBackup Enterprise Server/NetBackup Server; Server and Clients 5.0 (all platforms)
* NetBackup DataCenter and BusinesServer; Server and Clients 4.5FP (all platforms)
* NetBackup DataCenter and BusinesServer; Server and Clients 4.5MP (all platforms)

Solution:
Apply patches.
http://support.veritas.com/docs/281521

Provided and/or discovered by:
3Com's Zero Day Initiative credits Sebastian Apelt for discovering two of the vulnerabilities. The third vulnerability was discovered by TippingPoint Security Research.

Changelog:
2006-03-30: Added links to US-CERT vulnerability notes.

Original Advisory:
Symantec:
http://securityresponse.symantec.com/avcenter/security/Content/2006.03.27.html
http://support.veritas.com/docs/281521

3Com Zero Day Initiative:
http://www.zerodayinitiative.com/advisories/ZDI-06-005.html
http://www.zerodayinitiative.com/advisories/ZDI-06-006.html

TippingPoint Security Research:
http://www.tippingpoint.com/security/advisories/TSRT-06-01.html

Other References:
US-CERT VU#377441:
http://www.kb.cert.org/vuls/id/377441

US-CERT VU#744137:
http://www.kb.cert.org/vuls/id/744137

US-CERT VU#880801:
http://www.kb.cert.org/vuls/id/880801

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

7th Jan, 2009
New advisories: 31
New vulnerabilities: 90
Updated advisories: 37

Less // 450 views
Joomla! "X_CMS_LIBRARY_PATH" Directory Traversal Vulnerability
Moderately // 256 views
Red Hat update for xterm
Not // 240 views
Red Hat update for dbus
Moderately // 330 views
Red Hat update for openssl
Moderately // 495 views
OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability
Less // 260 views
vBulletin Personal Sticky Threads Add-on Security Bypass Vulnerability
Moderately // 229 views
BlogHelper "common_db.inc" Information Disclosure Security Issue
Moderately // 222 views
PollHelper "poll.inc" Information Disclosure Security Issue
Highly // 296 views
ComponentOne SizerOne CTab ActiveX Control Caption List Buffer Overflow
Highly // 264 views
TSC2 Help Desk CTab ActiveX Control Caption List Buffer Overflow

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. Joomla! "X_CMS_LIBRARY_PATH" Directory Traversal Vulnerability // 65 views
2. OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability // 55 views
3. Symantec Mail Security for SMTP Response Handling Denial of Service // 40 views
4. SAP GUI TabOne ActiveX Control Caption List Buffer Overflow // 35 views
5. Red Hat update for openssl // 33 views
6. Red Hat update for dbus // 33 views
7. HP OpenView Network Node Manager Multiple Vulnerabilities // 33 views
8. vBulletin Personal Sticky Threads Add-on Security Bypass Vulnerability // 30 views
9. ComponentOne SizerOne CTab ActiveX Control Caption List Buffer Overflow // 29 views
10. Red Hat update for xterm // 26 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2009