CVE-2011-0547

Name of the Vulnerable Software and Affected Versions Symantec Veritas Storage Foundation versions 5.1 and earlier Veritas Storage Foundation Cluster File System (SFCFS) versions 5.1 and earlier Veritas Storage Foundation Cluster File System Enterprise for Oracle RAC (SFCFSORAC) versions 5.1 and earlier Veritas Dynamic Multi-Pathing (DMP) version 5.1 NetBackup PureDisk versions 6.5.x through 6.6.1.x

Description The issue is related to multiple integer overflows in vxsvc.exe, which can be exploited by remote attackers to execute arbitrary code. This can be achieved through a crafted Unicode string, a crafted ASCII string, or a crafted value, all related to specific functions within the vxveautil module, such as vxveautil.value binary unpack and vxveautil.kv binary unpack. These crafted inputs can lead to a buffer overflow.

Recommendations For Symantec Veritas Storage Foundation versions 5.1 and earlier, consider disabling the vxveautil.value binary unpack and vxveautil.kv binary unpack functions until a patch is available. For Veritas Storage Foundation Cluster File System (SFCFS) versions 5.1 and earlier, restrict access to the vxsvc.exe service to minimize the risk of exploitation. For Veritas Storage Foundation Cluster File System Enterprise for Oracle RAC (SFCFSORAC) versions 5.1 and earlier, avoid using the vulnerable vxveautil module in critical operations. For Veritas Dynamic Multi-Pathing (DMP) version 5.1, temporarily disable the vxveautil module to prevent potential attacks. For NetBackup PureDisk versions 6.5.x through 6.6.1.x, restrict the use of ASCII and Unicode string parsing functions related to vxveautil.value binary unpack until a fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.