To print: Click here or Select File and then Print from your browser's menu

This story was printed from silicon.com, located at http://www.silicon.com/

Story URL: http://software.silicon.com/security/0,39024655,39145022,00.htm

Veritas flaw enables corporate attacks
Backup tool is cause for concern...

By Joris Evers

Published: Friday 01 July 2005

A security flaw in a Veritas Software backup tool is being exploited to attack corporate systems, the US watchdog for internet threats has warned.

Malicious code to exploit a vulnerability in Veritas Software's Backup Exec Remote Agent for Windows is publicly available, the US Computer Emergency Readiness Team (US-Cert) said in an alert on Thursday. The organisation has received reports of attacks and has seen an increase in scanning activity on TCP Port 10000, an indication that hackers are looking for vulnerable systems.

The buffer overflow flaw in the Veritas software could allow an intruder to gain control of a vulnerable system. The tool is used to trigger backup of data on Microsoft Windows servers, to protect the data from computer crashes, storage system catastrophes and other risks. It listens for commands addressed to TCP Port 10000 and accepts links to the backup server before the backup. However, it fails to properly validate incoming packets, Veritas said in an advisory last week.

The Backup Exec Remote Agent bug is one of several flaws in Backup Exec products that Veritas provided fixes for last week. The problem was discovered by security company iDefense, the storage company said.

The company and US-Cert are urging companies to apply the patches. For protection, they could also use a firewall to filter traffic on Port 10000 to accept only commands from backup servers, US-Cert said.

A Veritas representative said the company is not aware of any attacks on customer systems.

Veritas is in the process of merging with security specialist Symantec.

Joris Evers writes for CNET News.com