Patch summary for Symantec Security Advisories SYM06-004 and SYM06-005

Details:

Symantec Corporation has verified and addressed the security issues mentioned in this article in the Backup Exec for Windows Servers product. A hotfix has been developed for each of the affected product versions. Even though Symantec Corporation is unaware of any adverse customer impact from these vulnerabilities, we strongly recommend that users of the affected products apply the appropriate upgrades and/or updates immediately to safeguard against threats of this nature.

Symantec Corporation recommends that the following Security patches are applied as follows:

All Backup Exec 9.1 and 10.x for Windows Servers media servers
All Backup Exec 9.1 and 10.x Remote Agent for Windows Servers (RAWS)
All Backup Exec 10.x Remote Agent for NetWare Servers (RANW)
All Backup Exec 10.x Remote Agent for Linux / Unix Servers (RALUS)

Backup Exec 10.x for Windows Servers

The Remote Agent for Windows Servers should be updated after the hotfix is installed to the media server:

Backup Exec 10d (10.1) for Windows Servers rev. 5629, Hotfix 24

http://support.veritas.com/docs/282377

Backup Exec 10.0 for Windows Servers rev. 5520, Hotfix 28

http://support.veritas.com/docs/282378

Backup Exec 10.0 for Windows Servers rev. 5484, Hotfix 33

http://support.veritas.com/docs/282259

Backup Exec 10.x installations should have the following updates applied to RALUS:

10.1.5629 - Hotfix 21 - Remote Agent for Linux/UNIX Servers (RALUS) update

http://support.veritas.com/docs/282308

10.0.5520 - Hotfix 27 - Remote Agent for Linux/UNIX Servers (RALUS) update

http://support.veritas.com/docs/282312

10.0.5484 - Hotfix 34 - Remote Agent for Linux/UNIX Servers (RALUS) update

http://support.veritas.com/docs/282313

Backup Exec 10.x installations should also have the following update applied to replace the Remote Agent for NetWare:

Remote Agent for NetWare 9.1.1158.9

http://support.veritas.com/docs/282302

Backup Exec 9.1 for Windows Servers

The Remote Agent for Windows Servers should be updated after the hotfix is installed to the media server:

Backup Exec 9.1 for Windows Servers rev. 4691, Hotfix 56

http://support.veritas.com/docs/282260

Note: Backup Exec 9.0 for Windows Servers installations should be upgraded to Backup Exec 9.1 rev. 4691 in order for these vulnerabilities to be addressed.

These patches were developed to address the following Symantec Security Advisories:

SYM06-004 and SYM06-005

In depth descriptions of the security issues resolved by each patch are provided below:

Symantec Security Advisory SYM06-004

http://support.veritas.com/docs/282255

Symantec Security Advisory SYM06-005

http://support.veritas.com/docs/282254

For a listing of all Backup Exec for Windows Servers Software & Security Alerts go to the Backup Exec for Windows Servers area of the Support site and choose "Software & Security Alerts" or click the following URL:
http://support.veritas.com/menu_ddProduct_BEWNT_view_ALERT.htm

Products Applied:
Backup Exec for Windows Servers 10.0, 10.0 5484, 10.0 5484 SP1, 10.0 5484 SP2, 10.0 5520, 10d (10.1), 10d (10.1) 5629, 9.1, 9.1 4691, 9.1 4691 SP1, 9.1 4691 SP2

Last Updated: March 22 2006 10:14 PM GMT
Expires on: 365 days from publish date

Subscribe to receive critical updates about this document

Subjects:
Backup Exec for Windows Servers
Application: Installation

Languages:
English (US)

Operating Systems:
Windows 2000

Advanced Server, Advanced Server SP1, Advanced Server SP2, Advanced Server SP3, Advanced Server SP4, Advanced Server Windows Powered, Advanced Server Windows Powered SP1, Advanced Server Windows Powered SP2, Advanced Server Windows Powered SP3, Advanced Server Windows Powered SP4, Datacenter Server, Datacenter Server SP1, Datacenter Server SP2, Datacenter Server SP3, Datacenter Server SP4, Professional, Professional SP1, Professional SP2, Professional SP3, Professional SP4, SAK, Server, Server SP1, Server SP2, Server SP3, Server SP4, Server Windows Powered, Server Windows Powered SP1, Server Windows Powered SP2, Server Windows Powered SP3, Server Windows Powered SP4

Windows Server 2003

DataCenter, DataCenter (IA64), DataCenter (x64), DataCenter SP1, DataCenter SP1(IA64), DataCenter SP1(x64), Enterprise (IA64), Enterprise (x64), Enterprise SP1(IA64), Enterprise SP1(x64), Enterprise Server, Enterprise ServerSP1, R2, Standard Server, Standard Server SP1, Standard Server(x64), Storage Server, Storage Server SP1, Web Server, Web Server SP1

Symantec World Headquarters:
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com

THE INFORMATION PROVIDED IN THE SYMANTEC SOFTWARE KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. SYMANTEC SOFTWARE DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL SYMANTEC SOFTWARE OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES,EVEN IF SYMANTEC SOFTWARE OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.