Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free

Posted by deepcore on June 30, 2017 – 6:55 pm

This Metasploit module exploits a use-after-free vulnerability in the handling of SSL NDMP connections in Veritas/Symantec Backup Exec’s Remote Agent for Windows. When SSL is re-established on a NDMP connection that previously has had SSL established, the BIO struct for the connection’s previous SSL session is reused, even though it has previously been freed. This Metasploit module supports 3 specific versions of the Backup Exec agent in the 14, 15 and 16 series on 64-bit and 32-bit versions of Windows and has been tested from Vista to Windows 10.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« http://saopakjan.go.th/c7e.htm Apache ActiveMQ 5.x Web Shell Upload »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL