Symantec Backup Exec RPC-interface buffer overflow - Advisories

Software Inspectors

	Scan Online

	Personal (PSI)

	Network (NSI 2.0)

Solutions For

	Security Professionals

	Security Vendors

Free Solutions For

	Open Communities

	Journalists & Media

Secunia Advisories

	Search

	Historic Advisories

	Listed By Product

	Listed By Vendor

	Statistics / Graphs

	Secunia Research

	Report Vulnerability

	About Advisories

Virus Information

	Chronological List

	Last 10 Virus Alerts

	About Virus Information

Secunia Customers

	Customer Area

Symantec Backup Exec RPC-interface buffer overflow

Secunia Advisory:	SA26032
Udsendt:	2007-07-11
Sidste Opdt.:	2007-07-12

Kritisk:	Moderat kritisk
Betydning:	DoS Systemadgang
Hvor:	Fra Lokalt Netværk
Løsning Status:	Producent Patch

Software:	Symantec Backup Exec for Windows Servers 10.x Symantec Backup Exec for Windows Servers 11.x

CVE reference:	CVE-2007-3509 (Secunia mirror)

	Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS!

Beskrivelse: Der er rapporteret en sårbarhed i Symantec Backup Exec, som kan udnyttes af ondsindede personer til at udføre et DoS (Denial of Service) og potentielt kompromittere et sårbart system. Sårbarheden skyldes en ikke-kontrolleret buffer under håndteringen af input sendt til et RPC-interface. Dette kan udnyttes til at forårsage et heap-baseret buffer overflow ved at sende specielt udformede forespørgsler via "ncacn_ip_tcp" protokollen til RPC-interfacet (som standard port 6106/TCP). Succesfuld udnyttelse kan muliggøre eksekvering af vilkårlig kode. Sårbarheden er rapporteret i følgende versioner: * Backup Exec for Windows Servers version 10.0 build 10.0.5484 * Backup Exec for Windows Servers version 10.0 build 10.0.5520 * Backup Exec for Windows Servers version 10d build 10.1.5629 * Backup Exec for Windows Servers version 11d build 11.0.6235 * Backup Exec for Windows Servers version 11d build 11.0.7170 Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector. Løsning: Installér hotfix: http://support.veritas.com/docs/289283 Rapporteret af / Kredit: Fundet af en anonym person og rapporteret via iDefense Labs. Forløb: 12-07-2007: Tilføjede yderligere information fra iDefense. Tilføjede link til US-CERT. Original Advisory: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2007.07.11a.html iDefense Labs: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=553 Andre Kilder: US-CERT VU#213697: http://www.kb.cert.org/vuls/id/213697



Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

1 Relaterede Secunia Advisories

1. Symantec Backup Exec Job Engine Denial of Service

Send Feedback to Secunia

Hvis du har ny information angående dette Secunia advisory eller et produkt i vores database, så send det venligst til os. Du kan sende det til os enten ved at bruge vores web formular eller ved at sende det til vuln@secunia.com. Ideer, foreslag og andet feedback er også meget velkommen.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	phpJobScheduler "installed_conf ig_file" File Inclusion Vulnerabilities

2.	Novell eDirectory Multiple Vulnerabilities

3.	phpMyRealty "price_max" SQL Injection Vulnerability

4.	HP TCP/IP Services for OpenVMS Finger Format String Vulnerability

5.	dotProject SQL Injection and Cross-Site Scripting

6.	Adium MSN SLP Message Integer Overflow Vulnerabilities

7.	Blogn Cross-Site Scripting and Cross-Site Request Forgery

8.	IBM WebSphere Application Server for z/OS HTTP Server mod_proxy_ftp Vulnerability

9.	Sun Solaris Kernel Covert Channel Security Bypass

10.	Caudium "configvar" Insecure Temporary Files