VERITAS Backup Exec 9.0 up to and including 10.0 for Windows Servers, and 9.0.4019 up to and including 9.1.307 for Netware, allows remote malicious users to cause a denial of service (Remote Agent crash) via (1) a crafted packet in NDMLSRVR.DLL or (2) a request packet with an invalid (non-0) "Error Status" value, which triggers a null dereference.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
veritas backup exec |