CVE-2006-5822

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0050%

EPSS Percentile4.54th

PublishedDec 14, 2006

Last ModifiedApr 23, 2026

Vulnerability Description

Stack-based buffer overflow in the NetBackup bpcd daemon (bpcd.exe) in Symantec Veritas NetBackup 5.0 before 5.0_MP7, 5.1 before 5.1_MP6, and 6.0 before 6.0_MP4 allows remote attackers to execute arbitrary code via a long CONNECT_OPTIONS request, a different issue than CVE-2006-6222.

Affected Platforms (CPE)

📦

Symantec

Veritas Netbackup Client

= 5.0

📦

Symantec

Veritas Netbackup Client

= 5.1

📦

Symantec

Veritas Netbackup Client

= 6.0

📦

Symantec

Veritas Netbackup Enterprise Server

= 5.0

📦

Symantec

Veritas Netbackup Enterprise Server

= 5.1

📦

Symantec

Veritas Netbackup Enterprise Server

= 6.0

📦

Symantec

Veritas Netbackup Server

= 5.0

📦

Symantec

Veritas Netbackup Server

= 5.1

📦

Symantec

Veritas Netbackup Server

= 6.0

References & Advisories

🔗 http://secunia.com/advisories/23368

🔗 http://securitytracker.com/id?1017379

🔗 http://www.kb.cert.org/vuls/id/650432

🔗 http://www.securityfocus.com/archive/1/454314/100/0/threaded

🔗 http://www.securityfocus.com/bid/21565

🔗 http://www.symantec.com/avcenter/security/Content/2006.12.13a.html

🔗 http://www.vupen.com/english/advisories/2006/4999

🔗 http://www.zerodayinitiative.com/advisories/ZDI-06-050.html

Vulnerability Description

Affected Platforms (CPE)

Veritas Netbackup Client

Veritas Netbackup Client

Veritas Netbackup Client

Veritas Netbackup Enterprise Server

Veritas Netbackup Enterprise Server

Veritas Netbackup Enterprise Server

Veritas Netbackup Server

Veritas Netbackup Server

Veritas Netbackup Server

References & Advisories

Related Vulnerabilities