O
ovi
Guest
A HOLE IN key internet technology is being actively attacked by hackers, according to the US Department of Homeland Security.
The hole in Veritas Backup Exec Software has been fixed and can be patched, but the department fears that many companies have not yet done so.
Veritas Backup Exec software is network enabled recovery and backup software that listens on TCP port 10000 for incoming connections.
The flaw is the result of a buffer overflow condition that could potentially allow a malicious remote user to execute arbitrary code. Homeland Security said that the overflow is triggered by a flaw in how the remote agent software validates incoming packets.
The bug was first spotted by security outfit iDefense in March which issued a joint public disclosure with Veritas on June 22.
Now iDefence says that a public exploit came out for this vulnerability last Friday and over the weekend there was a large increase in port scanning on port 10000. According to internetnews.com the activity was also noticed by Homeland Security, which posted an alert.
"This increase is believed to be attempts to locate vulnerable systems running the Veritas Backup Exec Remote Agent," the alert states.
Source: theinquirer.net/?article=24314
The hole in Veritas Backup Exec Software has been fixed and can be patched, but the department fears that many companies have not yet done so.
Veritas Backup Exec software is network enabled recovery and backup software that listens on TCP port 10000 for incoming connections.
The flaw is the result of a buffer overflow condition that could potentially allow a malicious remote user to execute arbitrary code. Homeland Security said that the overflow is triggered by a flaw in how the remote agent software validates incoming packets.
The bug was first spotted by security outfit iDefense in March which issued a joint public disclosure with Veritas on June 22.
Now iDefence says that a public exploit came out for this vulnerability last Friday and over the weekend there was a large increase in port scanning on port 10000. According to internetnews.com the activity was also noticed by Homeland Security, which posted an alert.
"This increase is believed to be attempts to locate vulnerable systems running the Veritas Backup Exec Remote Agent," the alert states.
Source: theinquirer.net/?article=24314
