Symantec issues patch for flaw in backup software

Vulnerabilities could let attackers gain remote control of a system, security company warns.

Security specialist Symantec issued a critical update on Tuesday for its Veritas NetBackup 6.0 PureDisk Remote Office Edition, whose vulnerabilities could allow attackers to gain remote control over a user's system.

Symantec issued the security update to address buffer overflow vulnerabilities found in the HTML-embedded scripting language PHP, which is used in its PureDisk software, according to Symantec's security advisory.

Symantec encountered similar buffer overflow vulnerabilities with its NetBackup software earlier this year. The concerns surrounding that problem were compounded when a security organization publicly released computer code that could exploit the flaws.

In this latest case with PureDisk, however, Symantec says it is not aware of any publicly available exploit code.

Featured Video
6
This content is rated TV-MA, and is for viewers 18 years or older. Are you of age?
Sorry, you are not old enough to view this content.

NYC taxis to compete with Uber

NYC taxis set to launch an app of their own, one billion people visit Facebook in a day, Chrome sets end date for Flash support and HTC's Vive VR headset gets delayed.

by Jeff Bakalar