KLA10351 Multiple vulnerabilities in Symantec Backup Exec

Multiple serious vulnerabilities have been found in Symantec Backup Exec. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, read-write backup files, inject scripts and execute arbitrary code Below is a complete list of vulnerabilities

1. Vectors related to NDMP protocol can be exploited remotely;
2. Weak file permissions can be exploited locally via file modification;
3. XSS vulnerabilities can be exploited remotely via vectors related to web interface;
4. A buffer overflow can be exploited remotely via unspecified vectors.

Original advisories

Symantec advisory

Related products

VERITAS-Backup-Exec

CVE list

CVE-2013-4678 warning

CVE-2013-4676 warning

CVE-2013-4677 warning

CVE-2013-4575 critical

Solution

Update to latest version

Impacts

• ACE

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

• OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

• DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

• CI

Code injection. Exploitation of vulnerabilities with this impact can lead to changes in target code.

• WLF

Write Local Files. Exploitation of vulnerabilities with this impact can lead to writing into some inaccessible files. Files that can be read depends on concrete program errors.

• RLF

Read Local Files. Exploitation of vulnerabilities with this impact can lead to reading some inaccessible files. Files that can be read depends on conсrete program errors.

Affected Products

• Symantec Backup Exec 2010 R3 service packs 2 and earlierSymantec Backup Exec 2012 service packs 1 and earlier