APP: Symantec VERITAS Storage Foundation Administrator Service Buffer Overflow
This signature detects attempts to exploit a known vulnerability in Symantec VERITAS Storage Foundation. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
Symantec Storage Foundation is prone to a remote heap-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied data. This issue occurs in the Symantec Veritas Enterprise Administrator (VEA) component. An attacker can exploit this issue to execute arbitrary code in the context of the SYSTEM user. Successfully exploiting this issue will result in the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
Symantec storage_foundation_for_unix
Short Name
APP:VERITAS-ADMIN-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
Administrator Buffer CVE-2008-0638 Foundation Overflow Service Storage Symantec VERITAS bid:25778
Release Date
09/28/2010
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3683
Port
UDP/3207
False Positive
Unknown
Vendors
Symantec
CVSS Score
9.3