CVE-2006-0991

Name of the Vulnerable Software and Affected Versions NetBackup version 6.0 for Windows

Description The issue is related to a buffer overflow in the NetBackup Sharepoint Services server daemon (bpspsserver) that allows remote attackers to execute arbitrary code. This is achieved by sending crafted "Request Service" packets to the vnetd service, which listens on TCP port 13724.

Recommendations For NetBackup version 6.0 for Windows, consider restricting access to the vnetd service on TCP port 13724 until a patch is available. As a temporary workaround, disabling the bpspsserver daemon may help minimize the risk of exploitation.