CVE

Id
17402  
CVE No.
CVE-2006-1298  
Status
Candidate  
Description
Format string vulnerability in the Job Engine service (bengine.exe) in the Media Server in Veritas Backup Exec 10d (10.1) for Windows Servers rev. 5629, Backup Exec 10.0 for Windows Servers rev. 5520, Backup Exec 10.0 for Windows Servers rev. 5484, and Backup Exec 9.1 for Windows Servers rev. 4691, when the job log mode is Full Detailed (aka Full Details), allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via a crafted filename on a machine that is backed up by Backup Exec.  
Phase
Assigned (20060319)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
143881 17402 CVE-2006-1298 BUGTRAQ:20060320 Symantec Security Advisory, SYM06-005  View
143882 17402 CVE-2006-1298 URL:http://www.securityfocus.com/archive/1/archive/1/428223/100/0/threaded  View
143883 17402 CVE-2006-1298 CONFIRM:http://www.symantec.com/avcenter/security/Content/2006.03.17b.html  View
143884 17402 CVE-2006-1298 CONFIRM:http://support.veritas.com/docs/282254  View
143885 17402 CVE-2006-1298 BID:17096  View
143886 17402 CVE-2006-1298 URL:http://www.securityfocus.com/bid/17096  View
143887 17402 CVE-2006-1298 VUPEN:ADV-2006-0996  View
143888 17402 CVE-2006-1298 URL:http://www.vupen.com/english/advisories/2006/0996  View
143889 17402 CVE-2006-1298 SECTRACK:1015785  View
143890 17402 CVE-2006-1298 URL:http://securitytracker.com/id?1015785  View
143891 17402 CVE-2006-1298 SECUNIA:19242  View
143892 17402 CVE-2006-1298 URL:http://secunia.com/advisories/19242  View
143893 17402 CVE-2006-1298 XF:backupexec-bengine-format-string(25310)  View

Related JVN