CVE-2005-3116

VERITAS NetBackup Enterprise Server <5.1 MP3A - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in a shared library as used by the Volume Manager daemon (vmd) in VERITAS NetBackup Enterprise Server 5.0 MP1 to MP5 and 5.1 up to MP3A allows remote attackers to execute arbitrary code via a crafted packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Patrick Thomassen · c++remotewindows

https://www.exploit-db.com/exploits/1421

View Code ZIP pw:eip

References (12)

[Patch, Vendor Advisory] http://secunia.com/advisories/17503

[Patch] http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08b.html

[Patch] http://securitytracker.com/id?1015170

[Patch, Vendor Advisory] http://seer.support.veritas.com/docs/279553.htm

[Patch] http://www.idefense.com/application/poi/display?id=336&type=vulnerabilities

[Patch, US Government Resource] http://www.kb.cert.org/vuls/id/574662

[Patch] http://www.osvdb.org/20674

[Exploit, Vendor Advisory] http://www.securityfocus.com/archive/1/422066/100/0/threaded

[Exploit, Vendor Advisory] http://www.securityfocus.com/archive/1/422157/100/0/threaded

[Patch] http://www.securityfocus.com/bid/15353

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/22985

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/2349

Scores

EPSS 0.5511

EPSS Percentile 98.1%

Details

Status published

Products (9)

symantec_veritas/netbackup 5.0_with_mp1

symantec_veritas/netbackup 5.0_with_mp2

symantec_veritas/netbackup 5.0_with_mp3

symantec_veritas/netbackup 5.0_with_mp4

symantec_veritas/netbackup 5.0_with_mp5

symantec_veritas/netbackup 5.1_with_mp1

symantec_veritas/netbackup 5.1_with_mp2

symantec_veritas/netbackup 5.1_with_mp3a

symantec_veritas/netbackup 5.1_without_mp

Published Nov 18, 2005

Tracked Since Feb 18, 2026