CVE-2006-6222

Published: Dec 14, 2006Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in the NetBackup bpcd daemon (bpcd.exe) in Symantec Veritas NetBackup 5.0 before 5.0_MP7, 5.1 before 5.1_MP6, and 6.0 before 6.0_MP4 allows remote attackers to execute arbitrary code via a long request with a malformed length prefix.

Affected (9)

Products: Symantec: Veritas Netbackup Client, Veritas Netbackup Enterprise Server, Veritas Netbackup Server

3 products

Veritas Netbackup Client

Veritas Netbackup Enterprise Server

Veritas Netbackup Server

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Symantec Veritas Netbackup Client	Version 5.0
Symantec Veritas Netbackup Client	Version 5.1
Symantec Veritas Netbackup Client	Version 6.0
Symantec Veritas Netbackup Enterprise Server	Version 5.0
Symantec Veritas Netbackup Enterprise Server	Version 5.1
Symantec Veritas Netbackup Enterprise Server	Version 6.0
Symantec Veritas Netbackup Server	Version 5.0
Symantec Veritas Netbackup Server	Version 5.1
Symantec Veritas Netbackup Server	Version 6.0

References (22)

http://secunia.com/advisories/23368

Source: cve@mitre.org

PatchVendor Advisory

http://securityreason.com/securityalert/2033

Source: cve@mitre.org

http://securitytracker.com/id?1017379

Source: cve@mitre.org

Patch

http://www.kb.cert.org/vuls/id/607312

Source: cve@mitre.org

PatchUS Government Resource

http://www.securityfocus.com/archive/1/454313/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/21565

Source: cve@mitre.org

Patch

http://www.symantec.com/avcenter/security/Content/2006.12.13a.html

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2006/4999

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-06-049.html

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/30882

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/30883

Source: cve@mitre.org

http://secunia.com/advisories/23368

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://securityreason.com/securityalert/2033

Source: af854a3a-2127-422b-91ae-364da2661108

http://securitytracker.com/id?1017379

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.kb.cert.org/vuls/id/607312

Source: af854a3a-2127-422b-91ae-364da2661108

PatchUS Government Resource

http://www.securityfocus.com/archive/1/454313/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/21565

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.symantec.com/avcenter/security/Content/2006.12.13a.html

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.vupen.com/english/advisories/2006/4999

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.zerodayinitiative.com/advisories/ZDI-06-049.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/30882

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/30883

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.