Notices
NSC-050812: CRITICAL: Veritas Backup Exec Agent for Windows
This is a critical warning for anyone that is using the "Veritas Backup
Exec" software for Windows Servers. A serious flaw has been discovered in
this program which will allow an attacker to connect to a system running the
software agent and gain access to ANY file on the system. This includes all
system-level files such as the SAM (account/password) database file. AT
THIS TIME THERE IS NO PATCH FOR THIS PROBLEM.
A notification has been released that states exploit code has been captured
in the wild and is being used by attackers to gain access to computer
systems running the Veritas Backup Exec software.
The IT Security Office is strongly urging all technical staff who use the
Veritas Backup Exec software to immediately block access to port 10000 on
all systems with this software agent, allowing access via this port number
ONLY from their backup server. This can be accomplished with IPSec filters
on Windows 2000 or with the Windows 2003 firewall. If you use the Veritas
Backup Exec software and need assistance with blocking access to port 10000,
please contact the IT Security Office. (security@uiowa.edu or call
5-6332).