cbcvebase.
CVE-2006-4128
published 2006-08-14

CVE-2006-4128: Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec…

PriorityP432medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
5.50%
91.8th percentile
Multiple heap-based buffer overflows in Symantec VERITAS Backup Exec for Netware Server Remote Agent for Windows Server 9.1 and 9.2 (all builds), Backup Exec Continuous Protection Server Remote Agent for Windows Server 10.1 (builds 10.1.325.6301, 10.1.326.1401, 10.1.326.2501, 10.1.326.3301, and 10.1.327.401), and Backup Exec for Windows Server and Remote Agent 9.1 (build 9.1.4691), 10.0 (builds 10.0.5484 and 10.0.5520), and 10.1 (build 10.1.5629) allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted RPC message.

Affected

13 ranges
VendorProductVersion rangeFixed in
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
symantec_veritasbackup_exec
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.