Heap-Based Buffer Overflows in Symantec VERITAS Backup Exec for Netware Server
CVE-2006-4128

Currently unrated

Key Information:

Vendor: Symantec Veritas
Status: Backup Exec
Vendor: CVE Published:; 14 August 2006

Summary

Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec products allow remote attackers to send crafted Remote Procedure Call (RPC) messages, potentially leading to application crashes and enabling the execution of arbitrary code. The vulnerability affects various builds across multiple versions, exposing systems to significant security risks.

References

http://securitytracker.com/id?1016683

vdb-entryx_refsource_SECTRACK

http://seer.entsupport.symantec.com/docs/284623.htm

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/28336

vdb-entryx_refsource_XF

EPSS Score

18% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 14, 2006
Vulnerability Reserved
Aug 14, 2006