This script is Copyright (C) 2011-2014 Tenable Network Security, Inc.
The remote host is running an administrator service that is affected by
multiple integer overflow vulnerabilities.
Symantec Veritas Enterprise Administrator Service (vxsvc), a component
of Veritas Storage Foundation and other products, is running on the
Based on the response from the service, the running version of Symantec
Veritas Enterprise Administrator service is affected by multiple integer
overflow vulnerabilities, leading to buffer overflows in the following
- vxveautil.value_binary_unpack(), for ASCII string
- vxveautil.value_binary_unpack(), for UNICODE string
By exploiting these flaws, a remote, unauthenticated attacker could
execute arbitrary code on the remote host subject to the privileges of
the user running the affected application.
See also :
Apply the relevant patch from the Symantec advisory.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : false