Veritas Backup Exec Software has a nasty security flaw, and one that may well be being attacked on a big scale
as we speak. The software has network enabled recovery and backup functionality that listens on TCP port 10000 for incoming connections, and a flaw in the software means that a buffer overflow condition exists. Now, security outfit iDefense have claimed that they have detected a large increase in port scanning on port 10000, meaning that hackers may be poised to launch a considerable attack on internet connected systems that use this vulnerable software.
"This increase is believed to be attempts to locate vulnerable systems running the Veritas Backup Exec Remote Agent," the alert states.