Symantec Backup Exec Job Engine Multiple Integer Overflow Vulnerabilities
BID:26029
Info
Symantec Backup Exec Job Engine Multiple Integer Overflow Vulnerabilities
| Bugtraq ID: | 26029 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-4347 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 27 2007 12:00AM |
| Updated: | Dec 18 2007 08:04PM |
| Credit: | These issues were discovered by JJ Reyes of Secunia Research. |
| Vulnerable: |
Symantec Veritas Backup Exec for Windows Servers 11.0.7170 Symantec Veritas Backup Exec for Windows Servers 11.0.6135 |
| Not Vulnerable: | |
Discussion
Symantec Backup Exec Job Engine Multiple Integer Overflow Vulnerabilities
Symantec Backup Exec is prone to two remote integer-overflow vulnerabilities because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker can exploit these issues to cause an infinite loop that will exhaust memory or consume excessive CPU resources. Successful attacks will cause denial-of-service conditions.
Symantec Backup Exec for Windows Server 11.0.6235 and 11.0.7170 are vulnerable.
Symantec Backup Exec is prone to two remote integer-overflow vulnerabilities because it fails to bounds-check user-supplied data before copying it into an insufficiently sized buffer.
An attacker can exploit these issues to cause an infinite loop that will exhaust memory or consume excessive CPU resources. Successful attacks will cause denial-of-service conditions.
Symantec Backup Exec for Windows Server 11.0.6235 and 11.0.7170 are vulnerable.
Exploit / POC
Symantec Backup Exec Job Engine Multiple Integer Overflow Vulnerabilities
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Symantec Backup Exec Job Engine Multiple Integer Overflow Vulnerabilities
Solution:
Symantec released fixes to address these issues. Please see the references for more information.
Symantec Veritas Backup Exec for Windows Servers 11.0.6135
Symantec Veritas Backup Exec for Windows Servers 11.0.7170
Solution:
Symantec released fixes to address these issues. Please see the references for more information.
Symantec Veritas Backup Exec for Windows Servers 11.0.6135
-
Symantec Hotfix for Build 6235
http://support.veritas.com/docs/294241
Symantec Veritas Backup Exec for Windows Servers 11.0.7170
-
Symantec Hotfix for Build 7170
http://support.veritas.com/docs/294237
References
Symantec Backup Exec Job Engine Multiple Integer Overflow Vulnerabilities
References:
References:
- Symantec Backup Exec Homepage (Symantec )
- Symantec Backup Exec Job Engine Denial of Service Vulnerabilities (Secunia Research)
- Secunia Research: Symantec Backup Exec Job Engine Denial of Service (Secunia Research
- SYM07-029 Symantec Backup Exec for Windows Server: Multiple Denial of Service Is (Symantec)