Symantec has released software that fixes critical vulnerabilities in the company's Veritas Backup Exec and Veritas NetBackup software.
The patches were published on Saturday, a day after the company first warned of the problem. A flaw in the Network Data Management Protocol agent, used by the Veritas backup software, could allow an attacker to gain access to the system and download files, according to a Symantec statement released Monday.
The Metasploit penetration testing tool kit already takes advantage of this vulnerability, and there are reports that exploits for the flaw are already being used by attackers, Symantec said.
The bug affects a wider range of software than Symantec first reported last week, including NetWare versions of the NetBackup software, a company spokesman said Monday.
Details on the vulnerability and links to the software patches can be found here: http://securityresponse.symantec.com/avcenter/security/Content/2005.08.1...
Sign up to receive Security Resource Alerts
A comprehensive security management solution can help you streamline, as well as grow, your current or evolving business. In this way, a strategic security approach can help you increase your competitiveness in these challenging market conditions.
Download now! »
Find out how you can effectively collect, normalize and archive enterprise-wide, security-related data that is invaluable for security investigation and compliance reporting.
Download now! »
This session focuses on the intersection of role management and identity compliance, and addresses the importance of identity compliance in enterprise governance and the challenges that organizations may face in achieving it.
View now! »
1 Recommendation
