BeyondTrust

Security in Context: The BeyondTrust Blog

Welcome to the Zeroday Tracker: Your Vulnerability Watchlist

Get critical updates on the latest zeroday threats, including impact, mitigation and protection information - only from BeyondTrust.

Symantec Backup Exec System Recovery 8.5 Kernel Pointer Dereference

Disclosed May 12, 2011    Fully Patched

Vulnerability Description:

Symantec Backup Exec System Recovery contains a vulnerability in the way the CD/DVD driver present in GEARAspiWDM.sys handles IOCTL inputs. Successful exploitation may result in remote code execution.

Vendors:

Symantec

Vulnerable Software/Devices:

Backup Exec System Recovery 8.5

Vulnerability Severity:

Medium

Exploit Availability:

N/A

Exploit Impact:

Denial of Service
Denial of Service Condition This vulnerability could allow an attacker to cause a denial of service condition against a target, rendering the software or the entire machine inoperable.

BeyondTrust Prevention and Detection:

 

Mitigation:

No mitigation has been provided.

Links:

CVE(s):

None

Leave a Reply