CVE-2006-4128

Published Aug 14, 2006

Last updated 3 months ago

CVSS info 6.5

Overview

Description: Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and 10.1.327.401), and Backup Exec for Windows Server and Remote Agent 9.1 (build 9.1.4691), 10.0 (builds 10.0.5484 and 10.0.5520), and 10.1 (build 10.1.5629) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RPC message.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:9.1:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E11FD33B-E9E1-4C1D-A3C2-622A99637B3E"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:9.1_build9.1.4691:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0113460A-3653-471F-8CBC-DADDB8019424"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:9.2:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0FE14BC-EC55-41D8-A3B2-01E5D713C537"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.0:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D552062-F18D-4800-9618-C1A5F967F7C9"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.0_build10.0.5484:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "398B0C1C-3969-4664-A175-AF149DE701BA"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.0_build10.0.5520:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA98695D-2217-419A-8CEA-8EE30FEF6A95"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.1:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D1C409F7-A4AA-4693-AFB2-8DCA9E9AB928"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.1.325.6301:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62FDC7A0-1BDF-4BE6-ACC0-9508092A07C4"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.1.326.1401:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B46764B-6B34-414D-AD39-61A0C645F940"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.1.326.2501:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "08E7CF0C-3200-4976-B57B-91BDB8F50C47"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.1.326.3301:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F47DBE4-186F-4064-8FEF-FA36050B2074"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.1.327.401:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7AAC413A-B3BA-4AD4-9BD4-0BFC4355451E"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:backup_exec:10.1_build10.1.5629:*:windows_server_remote_agent:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5CAE4CB5-9716-4C34-A7F2-BA8133ECBA38"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References