CyberSec.Space Logo
Back to CVE Browser

CVE-2006-4128

MEDIUM
6.5
CVSS Severity Score
EPSS Score0.0620%
EPSS Percentile5.47th
PublishedAug 14, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and 10.1.327.401), and Backup Exec for Windows Server and Remote Agent 9.1 (build 9.1.4691), 10.0 (builds 10.0.5484 and 10.0.5520), and 10.1 (build 10.1.5629) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RPC message.

Affected Platforms (CPE)

πŸ“¦
Symantec Veritas

Backup Exec

= 9.1
πŸ“¦
Symantec Veritas

Backup Exec

= 9.1_build9.1.4691
πŸ“¦
Symantec Veritas

Backup Exec

= 9.2
πŸ“¦
Symantec Veritas

Backup Exec

= 10.0
πŸ“¦
Symantec Veritas

Backup Exec

= 10.0_build10.0.5484
πŸ“¦
Symantec Veritas

Backup Exec

= 10.0_build10.0.5520
πŸ“¦
Symantec Veritas

Backup Exec

= 10.1
πŸ“¦
Symantec Veritas

Backup Exec

= 10.1.325.6301
πŸ“¦
Symantec Veritas

Backup Exec

= 10.1.326.1401
πŸ“¦
Symantec Veritas

Backup Exec

= 10.1.326.2501
πŸ“¦
Symantec Veritas

Backup Exec

= 10.1.326.3301
πŸ“¦
Symantec Veritas

Backup Exec

= 10.1.327.401
πŸ“¦
Symantec Veritas

Backup Exec

= 10.1_build10.1.5629

References & Advisories

πŸ”— http://secunia.com/advisories/21472
πŸ”— http://securityreason.com/securityalert/1380
πŸ”— http://securityresponse.symantec.com/avcenter/security/Content/2006.08.11.html
πŸ”— http://securitytracker.com/id?1016683
πŸ”— http://seer.entsupport.symantec.com/docs/284623.htm
πŸ”— http://www.kb.cert.org/vuls/id/647796
πŸ”— http://www.securityfocus.com/archive/1/443037/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/19479

Related Vulnerabilities

CVE-2005-261110.0

VERITAS Backup Exec for Windows Servers 8.6 through 10.0, Backup Exec for NetWare Servers 9.0 and 9.1, and NetBackup for NetWare M...

CVE-2004-117210.0

Stack-based buffer overflow in the Agent Browser in Veritas Backup Exec 8.x before 8.60.3878 Hotfix 68, and 9.x before 9.1.4691 Ho...

CVE-2005-077110.0

VERITAS Backup Exec Server (beserver.exe) 9.0 through 10.0 for Windows allows remote unauthenticated attackers to modify the regis...

CVE-2007-512610.0

Unspecified vulnerability in the client in Symantec Veritas Backup Exec for Windows Servers 11d has unknown impact and remote atta...