From: "Geo." 

"Geo."  wrote in message
news:41caf52b$1{at}w3.nls.net...
> Successful exploitation does not require authentication thereby allowing
> any remote attacker to execute arbitrary code under the privileges of
> the Backup Exec Agent Browser (benetns.exe) process which is usually a
> domain administrative account.

Oh and as I mentioned in the discussion the other day, exploits for backup
agents yeild root in a way that is just incredibly tempting for virus
writers. What do you suppose a virus writer could do with code running
under a domain admin account that gives him full access not only to every
file on the one machine but to everything on all machines in the domain?

And the best part (I really got a kick out of this) is that BackupExec
folks still don't get it that the agent has to limit access to just the IP
of the backup server and drop traffic from anywhere else without so much as
even looking in the packets. (and that still might not stop a spoofed UDP
based exploit like slammer)

I guarantee, you are looking at the next major infection vector..
backupexec agents. This is a HUGE remote anon exploit.

Geo.

--- BBBS/NT v4.01 Flag-5