US-CERT warns of Veritas flaw

By
Follow google news

The U.S. Computer Emergency Readiness Team (US-CERT) has issued an alert about a flaw in a Veritas Software data backup product, which it says is being actively exploited.

The Veritas Backup Exec Remote Agent for Windows contains a buffer overflow that can allow an attacker to take over a system, according to US-CERT.


The agent is installed on systems that are slated for back up and listens on TCP port 10000 for messages that a backup should happen, but the software fails to properly validate incoming packets. A specially crafted message can then trigger a buffer overflow.

Exploit code for the flaw is publicly available and US-CERT said it has received legitimate reports that the vulnerability is being actively exploited. Also, it has seen increasing scanning activity on port 10000/tcp, indicating that attackers are trying to find systems running the flawed software.

US-CERT advised installing the patches Veritas has issued for the vulnerable software, and using firewalls to limit connectivity so that only backup servers can connect to the sytems being backed up.

www.us-cert.gov

Add iTnews as your trusted source

Add iTnews As Your Trusted Source Add iTnews As Your Trusted Source
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
flawofsecurityuscertveritaswarns

Sponsored Whitepapers

Agile in the AI Era: why projects still fail
Agile in the AI Era: why projects still fail
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
When Technology Becomes the Blocker: Unlocking Real Outcomes from AI and Cloud
High-volume data sources for AI-driven security analytics
High-volume data sources for AI-driven security analytics
How healthcare organisations can get more value from cloud
How healthcare organisations can get more value from cloud
1 in 3 companies lose SaaS data. Here’s how to prevent it
1 in 3 companies lose SaaS data. Here’s how to prevent it

Events

Most Read Articles

Anthropic opens Claude Mythos Preview AI program to Australia

Anthropic opens Claude Mythos Preview AI program to Australia
Services Australia describes fraud, debt-related machine learning use cases

Services Australia describes fraud, debt-related machine learning use cases
Defence says Palantir is "sandboxed" in its environment

Defence says Palantir is "sandboxed" in its environment
Medibank reveals attack vector and cost of 2022 security breach

Medibank reveals attack vector and cost of 2022 security breach
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?