Symantec Backup Exec Multiple Heap Overflow RCE (SYM06-014)

This script is Copyright (C) 2006-2016 Tenable Network Security, Inc.


Synopsis :

An application installed on the remote host is affected by multiple
remote code execution vulnerabilities.

Description :

The Windows remote host contains Symantec Backup Exec for Windows
Server or Backup Exec Continuous Protection Server, a commercial
backup product. The version of the software installed on the remote
host is affected by multiple heap overflow conditions involving
specially crafted calls to its RPC interfaces. An authenticated,
remote attacker can exploit these issues to crash the affected
application or execute arbitrary code with elevated privileges.

See also :

http://www.symantec.com/avcenter/security/Content/2006.08.11.html

Solution :

Apply the appropriate hotfix as referenced in the vendor advisory.

Risk factor :

Medium / CVSS Base Score : 6.5
(CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P)
CVSS Temporal Score : 4.8
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 22226 ()

Bugtraq ID: 19479

CVE ID: CVE-2006-4128

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now