Denial of Service Vulnerability in Backup Exec by Veritas
CVE-2005-0772

Currently unrated

Key Information:

Vendor: Symantec Veritas
Status: Backup Exec
Vendor: CVE Published:; 28 June 2005

Summary

The vulnerability in Veritas Backup Exec versions 9.0 through 10.0 for Windows Servers and specific versions for Netware allows attackers to induce a denial of service. This occurs through malformed packets processed by NDMLSRVR.DLL or by sending a request with a non-zero 'Error Status' value, leading to a null dereference and subsequent crash of the Remote Agent.

References

http://securitytracker.com/id?1014273

vdb-entryx_refsource_SECTRACK

http://seer.support.veritas.com/docs/276533.htm

x_refsource_CONFIRM

http://www.idefense.com/application/poi/display?id=270&ty...

third-party-advisoryx_refsource_IDEFENSE

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 28, 2005
Vulnerability Reserved
Mar 18, 2005