January 2006

ID: 00067
Ref: 66/2006
Date: 19 January 2006:15:31:09
Version: 1

---

Title: Updated Symantec Advisory: Buffer overflow vulnerability in VERITAS NetBackup
Abstract: A buffer overflow vulnerability exists in a shared library used by the VERITAS NetBackup volume manager daemon (vmd) running on VERITAS NetBackup 5.x servers and clients
Vendors affected: Veritas
Applications affected: Veritas

---

UNIRAS Briefing 941/2005 refers:
http://www.niscc.gov.uk/niscc/docs/br-20051109-01003.html?lang=en

A buffer overflow vulnerability exists in a shared library used by the
VERITAS NetBackup volume manager daemon (vmd) running on VERITAS NetBackup
5.x servers and clients. Successful exploitation of this overflow
condition could possibly allow a malicious attacker to create a denial of
service disrupting backup systems or potentially allow execution of
arbitrary code with elevated privileges on a targeted system.
Further details can be found at:

http://seer.support.veritas.com/docs/279553.htm

The asociated document contains the following updates:

1. Exploit code is now publicly available, however, the signatures
contained within the reference document have been tested with this
exploit code and these signatures do detect it.

2. The Formal Resolution has been updated, as the formal maintenance
packs containing the fix for this issue have been released and are
listed as Related Documents within the reference document.

Other useful information:
http://isc.incidents.org/port_details.php?port=13701
http://www.us-cert.gov/current/current_activity.html#veritasvmd