Document ID: 283601
http://support.veritas.com/docs/283601
E-Mail this document to a colleague
http://support.veritas.com/docs/283601
E-Mail this document to a colleague
Potential security vulnerabilities in the Backup Exec Continuous Protection Server version of the Remote Agent for Windows Servers.
Details:
The Backup Exec Continuous Protection Server (CPS) version
of the Backup Exec Remote Agent for Windows Servers (RAWS) contains security
vulnerabilities in which a specifically malformed packet could result in a
process crash or a denial of service (DoS) preventing ongoing backup capability
until the Backup Exec Remote Agent Service is restarted.
Because CPS provides an independent installation source for the Backup Exec Remote Agent for Windows Servers, all CPS servers should be considered vulnerable and eligible for update. Symantec Technical Support advises that all BECPS systems should be updated with the patch for BECPS RAWS that is referenced in this article.
This issue was first discovered during testing of the CPS version of the Backup Exec Remote Agent for Windows Servers, subsequent to the release of the Backup Exec for Windows Servers Hotfix 24 that addresses the same issue for the Backup Exec for Windows Servers version of RAWS.
For additional details on the security vulnerability please review:
Symantec Security Advisory SYM06-004
http://support.veritas.com/docs/282255
Backup Exec CPS SP1 Hotfix 2 can be downloaded from the following URL:
http://support.veritas.com/docs/283478
Because CPS provides an independent installation source for the Backup Exec Remote Agent for Windows Servers, all CPS servers should be considered vulnerable and eligible for update. Symantec Technical Support advises that all BECPS systems should be updated with the patch for BECPS RAWS that is referenced in this article.
This issue was first discovered during testing of the CPS version of the Backup Exec Remote Agent for Windows Servers, subsequent to the release of the Backup Exec for Windows Servers Hotfix 24 that addresses the same issue for the Backup Exec for Windows Servers version of RAWS.
For additional details on the security vulnerability please review:
Symantec Security Advisory SYM06-004
http://support.veritas.com/docs/282255
Backup Exec CPS SP1 Hotfix 2 can be downloaded from the following URL:
http://support.veritas.com/docs/283478
Related Documents:
http://support.veritas.com/docs/279330
http://support.veritas.com/docs/282255
http://support.veritas.com/docs/283478
http://support.veritas.com/docs/279330
http://support.veritas.com/docs/282255
http://support.veritas.com/docs/283478
Products Applied:
Backup Exec for Windows Servers 10d (10.1), 10d (10.1) 5629
Backup Exec for Windows Servers Continuous Protection Server 10d (10.1), 10d (10.1) 6301
Backup Exec for Windows Servers 10d (10.1), 10d (10.1) 5629
Backup Exec for Windows Servers Continuous Protection Server 10d (10.1), 10d (10.1) 6301
Last Updated: June 05 2006 06:57 PM GMT
Expires on: 365 days from publish date
Subscribe to receive critical updates about this document
Expires on: 365 days from publish date
Subscribe to receive critical updates about this document
Subjects:
Backup Exec for Windows Servers
Publishing Status: Techalert
Remote Agent For Windows Servers: Troubleshoot
Backup Exec for Windows Servers Continuous Protection Server
Security: Application
Backup Exec for Windows Servers
Publishing Status: Techalert
Remote Agent For Windows Servers: Troubleshoot
Backup Exec for Windows Servers Continuous Protection Server
Security: Application
Languages:
English (US)
English (US)
Operating Systems:
Windows 2000
Windows 2000
Advanced Server SP4, Advanced Server Windows Powered SP4, Datacenter Server SP4, Server SP4, Server Windows Powered SP4
Windows Server 2003
DataCenter SP1, Enterprise ServerSP1, R2, Standard Server SP1, Storage Server SP1, Web Server SP1
Symantec World Headquarters:
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
THE INFORMATION PROVIDED IN THE SYMANTEC SOFTWARE KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. SYMANTEC SOFTWARE DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL SYMANTEC SOFTWARE OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES,EVEN IF SYMANTEC SOFTWARE OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.