The NetBackup Catalog daemon contains a stack-based buffer overflow that could allow a remote attacker to execute arbitrary code on a NetBackup master server.
Netbackup is a data backup and recovery solution with support for "over the network" backup.
By sending a specially crafted packet to a vulnerable Netbackup master a remote, unauthenticated attacker may be able to execute arbitrary code with the privileges of the NetBackup Catalog daemon, typically root.
Apply patches from Symantec/VERITAS
This vulnerability was reported by TippingPoint Security Research.
This document was written by Jeff Gennari.
|Date First Published:||2006-03-29|
|Date Last Updated:||2006-03-29 21:21 UTC|