US-CERT is tracking this issue in the following vulnerability note: This increase is believed to be attempts to locate vulnerable systems running the VERITAS Backup Exec Remote Agent. We have also seen increased scanning activity on port 10000/tcp. InĪddition, we have received credible reports that this vulnerability isīeing actively exploited to execute arbitrary code with Local System Specially crafted authentication messages can be used to trigger the buffer overflow, making it possible for an unauthenticated attacker to exploit this vulnerability.Įxploit code for this vulnerability is publicly available. The remote agent software fails to properly validate incoming packets, which allows a buffer overflow to occur. It listens on TCP port 10000 for messages indicating that a backup should occur. The VERITAS Backup Exec Remote Agent is installed on systems that are to be backed up. VERITAS Backup Exec is a data backup and recovery solution with support for network-based backups.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |