CVE-2011-0547
Symantec Veritas Storage Foundation <= 5.1 - Remote Code Execution via Integer Overflow
Title source: llmDescription
Multiple integer overflows in vxsvc.exe in the Veritas Enterprise Administrator service in Symantec Veritas Storage Foundation 5.1 and earlier, Veritas Storage Foundation Cluster File System (SFCFS) 5.1 and earlier, Veritas Storage Foundation Cluster File System Enterprise for Oracle RAC (SFCFSORAC) 5.1 and earlier, Veritas Dynamic Multi-Pathing (DMP) 5.1, and NetBackup PureDisk 6.5.x through 6.6.1.x allow remote attackers to execute arbitrary code via (1) a crafted Unicode string, related to the vxveautil.value_binary_unpack function; (2) a crafted ASCII string, related to the vxveautil.value_binary_unpack function; or (3) a crafted value, related to the vxveautil.kv_binary_unpack function, leading to a buffer overflow.
References (8)
Core 8
Core References
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-11-264/
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=131955939603667&w=2
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14792
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-11-263/
Patch, Vendor Advisory x_refsource_confirm
http://www.symantec.com/business/support/index?page=content&id=TECH165536
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/49014
Third Party Advisory x_refsource_confirm
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2011&suid=20110815_00
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-11-262/
Scores
EPSS
0.3609
EPSS Percentile
97.2%
Details
CWE
CWE-189
Status
published
Products (12)
symantec/netbackup_puredisk
6.5.0.1
symantec/netbackup_puredisk
6.5.1
symantec/netbackup_puredisk
6.5.1.1
symantec/netbackup_puredisk
6.5.1.2
symantec/netbackup_puredisk
6.6.1
symantec/netbackup_puredisk
6.6.1.1
symantec/netbackup_puredisk
6.6.1.2
symantec/veritas_dynamic_multi-pathing
5.1
symantec/veritas_storage_foundation
5.0
symantec/veritas_storage_foundation
< 5.1
... and 2 more
Published
Aug 19, 2011
Tracked Since
Feb 18, 2026