CVE-2006-0991 - Buffer overflow in the NetBackup Sharepoint Services server daemon (bpspsserver) on NetBackup 6.0 fo

CVE-2006-0991

Summary

Buffer overflow in the NetBackup Sharepoint Services server daemon (bpspsserver) on NetBackup 6.0 for Windows allows remote attackers to execute arbitrary code via crafted "Request Service" packets to the vnetd service (TCP port 13724).

References

Vulnerable Configurations

cpe:2.3:a:veritas:netbackup:4.5.0:fp:businessserver:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:4.5.0:fp:businessserver:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:4.5.0:fp:datacenter:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:4.5.0:fp:datacenter:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:4.5.0:mp:businessserver:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:4.5.0:mp:businessserver:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:4.5.0:mp:datacenter:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:4.5.0:mp:datacenter:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.0:*:enterprise_server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.0:*:enterprise_server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.0:*:server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.0:*:server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.1:*:enterprise_server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.1:*:enterprise_server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.1:*:server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:5.1:*:server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:6.0:*:enterprise_server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:6.0:*:enterprise_server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:6.0:*:server:*:*:*:*:*
cpe:2.3:a:veritas:netbackup:6.0:*:server:*:*:*:*:*

CVSS

Base:	7.1 (as of 18-10-2018 - 16:30)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	SINGLE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:H/Au:S/C:C/I:C/A:C

refmap via4

bid	17264
bugtraq	20060327 TSRT-06-01: Symantec VERITAS NetBackup vnetd Buffer Overflow Vulnerability
cert-vn	VU#377441
confirm	http://securityresponse.symantec.com/avcenter/security/Content/2006.03.27.html http://seer.support.veritas.com/docs/281521.htm
misc	http://www.tippingpoint.com/security/advisories/TSRT-06-01.html
sectrack	1015832
secunia	19417
vupen	ADV-2006-1124
xf	netbackup-vnetd-bo(25473)

saint via4

bid 17264
description VERITAS NetBackup VMD argument parsing vulnerability
id misc_netbackupvmbo
osvdb 24172
title netbackup_vmd_arg
type remote
bid 17264
description VERITAS NetBackup vnetd bpspsserver buffer overflow
id misc_netbackupvmbo
osvdb 24170
title netbackup_bpspsserver
type remote

Last major update

18-10-2018 - 16:30

Published

28-03-2006 - 00:06

Last modified

18-10-2018 - 16:30