Link to IDS/IPS signatures for Symantec Security products.8/13/2005 - Revision Three - Added Tech Support link to additional product updates.This agent extends the Backup Exec advanced agent technology to Linux operating systems by providing full, incremental, and differential backup support, restore capabilities, and client-side deduplication for supported distributions of Linux.
Symantec will not give an easy way to manually deploy those updates and when they multiply it's a lot of work... copy the following folder localy: "\[BEServer Name]\c$\Program Files\Symantec\Backup Exec\Agents\RAWS32\Updates" (RAWS32 should be replaced with RAWSX64 depends on your OS)2.
A public exploit has been released to the metasploit framework.
Symantec Man Hunt 3.0 Users of Symantec Manhunt 3.0 can update to the latest Security Update to detect attempts to exploit this vulnerability. Symantec Network Security 7100 Series/4.0 Users of Symantec Network Security 7100 Series/4.0 can update to the latest Security Update to detect attempts to exploit this vulnerability. Symantec Gateway Security 2.0 Users of Symantec Gateway Security 2.0 can update to the latest Security Update to detect attempts to exploit this vulnerability. Symantec Client Security 3.0 Users of Symantec Client Security 3.0 can update to the latest Security Update to detect attempts to exploit this vulnerability. Symantec Response Symantec product engineers quickly validated this issue and delivered fixes and Technical Support documentation for the following supported product versions: VERITAS Backup Exec for Windows Servers VERITAS Backup Exec for Net Ware Servers VERITAS Net Backup for Net Ware Media Server Option Symantec recommends customers immediately apply the latest update for their supported product versions as soon as they are available to protect against these types of threats.
If not, Symantec recommends customers manually running Symantec Live Update to ensure they are running the most current protection.
Symantec recommends customers block external access to the service (TCP port 10000) at the network perimeter until they can effectively update their affected systems.
The Enterprise Server Option provides ultimate licensing simplicity by consolidating two Backup Exec options into one.