CVE-2006-0991 : Buffer overflow in the NetBackup Sharepoint Services server daemon (bpspsserver)

Buffer overflow in the NetBackup Sharepoint Services server daemon (bpspsserver) on NetBackup 6.0 for Windows allows remote attackers to execute arbitrary code via crafted "Request Service" packets to the vnetd service (TCP port 13724).

Published 2006-03-28 00:06:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Products affected by CVE-2006-0991

Veritas » Netbackup » Version: 5.1 Server Edition
cpe:2.3:a:veritas:netbackup:5.1:*:server:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 5.0 Server Edition
cpe:2.3:a:veritas:netbackup:5.0:*:server:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 5.1 Enterprise Server Edition
cpe:2.3:a:veritas:netbackup:5.1:*:enterprise_server:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 4.5.0 Update FP Businessserver Edition
cpe:2.3:a:veritas:netbackup:4.5.0:fp:businessserver:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 4.5.0 Update FP Datacenter Edition
cpe:2.3:a:veritas:netbackup:4.5.0:fp:datacenter:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 6.0 Enterprise Server Edition
cpe:2.3:a:veritas:netbackup:6.0:*:enterprise_server:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 6.0 Server Edition
cpe:2.3:a:veritas:netbackup:6.0:*:server:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 4.5.0 Update MP Businessserver Edition
cpe:2.3:a:veritas:netbackup:4.5.0:mp:businessserver:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 4.5.0 Update MP Datacenter Edition
cpe:2.3:a:veritas:netbackup:4.5.0:mp:datacenter:*:*:*:*:*
Matching versions
Veritas » Netbackup » Version: 5.0 Enterprise Server Edition
cpe:2.3:a:veritas:netbackup:5.0:*:enterprise_server:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-0991

EPSS FAQ

29.07%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 96 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-0991

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.1	HIGH	AV:N/AC:H/Au:S/C:C/I:C/A:C	3.9	10.0	NIST
Access Vector: Network Access Complexity: High Authentication: Single Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2006-0991

Jump to

Vulnerability Details : CVE-2006-0991

Products affected by CVE-2006-0991

Exploit prediction scoring system (EPSS) score for CVE-2006-0991

CVSS scores for CVE-2006-0991

References for CVE-2006-0991