Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0990

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2006-0990
Last Modified 07 Mar 2011 09:31:32
Published 27 Mar 2006 07:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-0990

Summary

Stack-based buffer overflow in the NetBackup Catalog daemon (bpdbm) in Veritas NetBackup Enterprise Server 5.0 through 6.0 and DataCenter and BusinesServer 4.5FP and 4.5MP allows attackers to execute arbitrary code via unknown vectors.

Vulnerable Systems

Application

  • Veritas Netbackup 4.5.0

  • Veritas Netbackup 5.0

  • Veritas Netbackup 5.1

  • Veritas Netbackup 6.0


References

CERT-VN - VU#744137

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2006.03.27.html

MISC - http://www.zerodayinitiative.com/advisories/ZDI-06-006.html

VUPEN - ADV-2006-1124

CONFIRM - http://seer.support.veritas.com/docs/281521.htm

XF - netbackup-bpdbm-sprintf-bo(25472)

BID - 17264

BUGTRAQ - 20060327 SYM06-006, Veritas NetBackup: Multiple Overflow Vulnerabilities in NetBackup Daemons

BUGTRAQ - 20060327 ZDI-06-006: Symantec VERITAS NetBackup Database Manager Buffer Overflow

SECTRACK - 1015832

SREASON - 642

SECUNIA - 19417


Last Updated: 27 May 2016 10:41:52