| VID |
23166 |
| Severity |
40 |
| Port |
497 |
| Protocol |
TCP |
| Class |
Daemon |
| Detailed Description |
The Retrospect backup client, according to its version number, has a buffer overflow vulnerability. EMC Retrospect is a commercial network backup client. EMC Retrospect Client are vulnerable to a buffer overflow vulnerability in the Retroclient service. By sending a malformed packet to TCP port 497, a remote attacker could cause the client to crash or execute arbitrary code on the affected host.
* References:
http://kb.dantz.com/display/2/kb/article.asp?aid=9511&n=1&s=
http://kb.dantz.com/display/2/articleDirect/index.asp?aid=9511&r=0.1410639
http://archives.neohapsis.com/archives/bugtraq/2006-05/0437.html
http://www.acrossecurity.com/aspr/ASPR-2006-05-17-1-PUB.txt
http://www.kb.cert.org/vuls/id/186944
http://secunia.com/advisories/20080/
* Platforms Affected:
EMC Retrospect Client for Microsoft Windows versions prior to 6.5.140
EMC Retrospect Client for Microsoft Windows versions prior to 7.0.112
EMC Retrospect Client for Microsoft Windows versions prior to 7.5.116
EMC Retrospect Client for Novell Netware versions prior to 1.0.141
EMC Retrospect Client for Redhat Linux versions prior to 6.5.110
EMC Retrospect Client for Redhat Linux versions prior to 7.0.110
EMC Retrospect Client for Redhat Linux versions prior to 7.5.112
EMC Retrospect Client for Sun Solaris versions prior to 6.5.110
EMC Retrospect Client for Sun Solaris versions prior to 7.0.109
EMC Retrospect Client for Sun Solaris versions prior to 7.5.112
EMC Retrospect Client for Mac OS X versions 6.0.x
EMC Retrospect Client for Mac OS X versions prior to 6.1.130
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of Retrospect Client, as listed in EMC Knowledge Base Article 9511 at http://kb.dantz.com/display/2/kb/article.asp?aid=9511&n=1&s= |
| Related URL |
CVE-2006-2391 (CVE) |
| Related URL |
17948,18064 (SecurityFocus) |
| Related URL |
26380 (ISS) |
|
