Buffer overflow : VERITAS Backup Exec Agent Browser Remote Buffer Overflow Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.802981

Categoría: Buffer overflow

Título: VERITAS Backup Exec Agent Browser Remote Buffer Overflow Vulnerability

Resumen: VERITAS Backup Exec Agent Browser is prone to a buffer overflow vulnerability.

Descripción: Summary:
VERITAS Backup Exec Agent Browser is prone to a buffer overflow vulnerability.

Vulnerability Insight:
The name server registration service (benetns.exe) fails to validate the
client hostname field during the registration process, which leads into
stack-based buffer overflow.

Vulnerability Impact:
Successful exploitation will allow attackers to overflow a buffer and
execute arbitrary code on the system.

Affected Software/OS:
Veritas Backup Exec Agent Browser version 8.x before 8.60.3878 Hotfix 68,
and 9.x before 9.1.4691 Hotfix 40

Solution:
Upgrade to Veritas Backup Exec Agent Browser 8.60.3878 Hotfix 68 or
9.1.4691 Hotfix 40 or later.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-1172
BugTraq ID: 11974
http://www.securityfocus.com/bid/11974
CERT/CC vulnerability note: VU#907729
http://www.kb.cert.org/vuls/id/907729
http://www.idefense.com/application/poi/display?id=169
http://www.frsirt.com/exploits/20050111.101_BXEC.cpp.php
http://secunia.com/advisories/13495/
XForce ISS Database: netbackup-agent-browser-bo(18506)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18506

Copyright Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.802981
Categoría:	Buffer overflow
Título:	VERITAS Backup Exec Agent Browser Remote Buffer Overflow Vulnerability
Resumen:	VERITAS Backup Exec Agent Browser is prone to a buffer overflow vulnerability.
Descripción:	Summary: VERITAS Backup Exec Agent Browser is prone to a buffer overflow vulnerability. Vulnerability Insight: The name server registration service (benetns.exe) fails to validate the client hostname field during the registration process, which leads into stack-based buffer overflow. Vulnerability Impact: Successful exploitation will allow attackers to overflow a buffer and execute arbitrary code on the system. Affected Software/OS: Veritas Backup Exec Agent Browser version 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Hotfix 40 Solution: Upgrade to Veritas Backup Exec Agent Browser 8.60.3878 Hotfix 68 or 9.1.4691 Hotfix 40 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1172 BugTraq ID: 11974 http://www.securityfocus.com/bid/11974 CERT/CC vulnerability note: VU#907729 http://www.kb.cert.org/vuls/id/907729 http://www.idefense.com/application/poi/display?id=169 http://www.frsirt.com/exploits/20050111.101_BXEC.cpp.php http://secunia.com/advisories/13495/ XForce ISS Database: netbackup-agent-browser-bo(18506) https://exchange.xforce.ibmcloud.com/vulnerabilities/18506
Copyright	Copyright (C) 2012 Greenbone AG