[Dshield] Veritas Backup Exec Agent - Metasploit plugin

David Taylor ltr at isc.upenn.edu
Sat Jun 25 10:57:56 GMT 2005


The advisory released just a couple of days ago for several Veritas
vulnerabilities has an exploit module in Metasploit.  There has also been an
increase in port 10000 scanning.  My guess is this is going to be
significant since people usually wait several days before they patch.

http://www.metasploit.com/projects/Framework/exploits.html#backupexec_agent

Since this exploit is attacking machines that have backup software they
should have a fresh backup to use when they have to rebuild the system after
it is p0wn3d.  =)

==================================================
David Taylor //Sr. Information Security Specialist
University of Pennsylvania Information Security 
Philadelphia PA USA
LTR at ISC.UPENN.EDU               (215) 898-1236
http://www.upenn.edu/computing/security/
================================================== 

SANS - The Twenty Most Critical Internet Security Vulnerabilities 
http://www.sans.org/top20/

SANS - Internet Storm Center
http://isc.sans.org




More information about the list mailing list