Heap-Based Buffer Overflow in Symantec Backup Exec Utility Program
CVE-2013-4575

Currently unrated

Key Information:

Vendor: Symantec
Status: Backup Exec
Vendor: CVE Published:; 5 August 2013

Summary

A heap-based buffer overflow vulnerability exists in the utility program of the Linux agent in Symantec Backup Exec, impacting versions prior to 2010 R3 SP3 and 2012 before SP2. This vulnerability allows remote attackers to potentially execute arbitrary code or cause a denial of service by exploiting unspecified vectors, resulting in an agent crash.

References

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://osvdb.org/95938

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/61485

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Aug 5, 2013
Vulnerability Reserved
Jun 12, 2013