Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0989

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2006-0989
Last Modified 07 Mar 2011 09:31:32
Published 27 Mar 2006 07:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-0989

Summary

Stack-based buffer overflow in the volume manager daemon (vmd) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCenter and BusinesServer 4.5FP and 4.5MP allows attackers to execute arbitrary code via unknown vectors.

Vulnerable Systems

Application

  • Veritas Netbackup 4.5.0

  • Veritas Netbackup 5.0

  • Veritas Netbackup 5.1

  • Veritas Netbackup 6.0


References

CERT-VN - VU#880801

MISC - http://www.zerodayinitiative.com/advisories/ZDI-06-005.html

VUPEN - ADV-2006-1124

CONFIRM - http://seer.support.veritas.com/docs/281521.htm

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2006.03.27.html

XF - netbackup-vmd-sscanf-bo(25471)

BID - 17264

BUGTRAQ - 20060327 ZDI-06-005: Symantec VERITAS NetBackup Volume Manager Buffer Overflow

OSVDB - 24172

SECTRACK - 1015832

SREASON - 639


Last Updated: 27 May 2016 10:41:52