Hackers attack Veritas data back-up flaw

Hackers are exploiting an unpatched vulnerability in Symantec’s Veritas Backup Exec Agent for Windows servers.

Hackers are exploiting an unpatched vulnerability in Symantec’s Veritas Backup Exec Agent for Windows servers.

A flaw in the product’s network data management protocol system potentially allows attackers to gain access to users’ systems and download files.

The flaw has been reported by both the Fr-SIRT (French Security Incident Response Team) and the SANS Internet Storm Centre.

No patch is currently available for the flaw and Symantec, which acquired Veritas in July, is recommending that users block or restrict access to TCP (Transmission Control Protocol) port 10000, which uses the flawed system.

The threat affects versions 8.x, 9.0, 9.1 and 10.0 of Backup Exec for Windows.

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more on IT risk management

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close