Multiple security flaws in Veritas Software Inc.s Backup Exec data storage product could put users at risk of privilege escalation and denial-of-service attacks, the company confirmed Thursday.
The Mountain View, Calif., data management specialist said the flaws were flagged—and fixed—in Veritas Backup Exec for Windows and NetWare servers, two enterprise-facing products used to securely back up and secure data.
Security alerts aggregator Secunia Inc. rates the issue as “moderately critical” and warned that a successful attacker could also gain access to a vulnerable system.
Affected products include Veritas Backup Exec 9.x and 10.x, Veritas said in an advisory.
The advisory includes information on patching two errors in the way the products Remote Agent handles request packets. These bugs can be exploited to crash the application or system via specially crafted request packets.
It also fixes a separate boundary error in Remote Agent when processing authentication requests. Successful exploitation could cause a buffer overflow and the execution of arbitrary code.
Veritas also patched an access control error that can be exploited by a malicious hacker to gain administrator privileges over a vulnerable systems registry. This flaw only affects the Windows version of Backup Exec.
In a separate alert, Veritas warned of a buffer overflow vulnerability in the Veritas NetBackup for NetWare Media Servers that could allow remote attackers to force a system crash.
The flaw affects NetBackup BusinesServer 4.x, NetBackup DataCenter 4.x, NetBackup Enterprise Server 5.x and NetBackup Server 5.x.
Information on patching the range of vulnerabilities can be found here and here.
Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.