SecuriTeam"! - Symantec Backup Exec Job Engine Denial of Service

BackupEXECの JOBエンジンに複数のDoSを受ける脆弱性だそうです。パケットを受けるだけでCPUとメモリを食べるそうです。

1) A NULL-pointer dereference error in the Backup Exec Job Engine service (bengine.exe) when handling exceptions can be exploited to crash the service by sending a specially crafted packet to default port 5633/TCP.
2) Two integer overflow errors within the Backup Exec Job Engine service can be exploited to e.g. cause the service to enter an infinite loop and exhaust all available memory or consume large amounts of CPU resource by sending a specially crafted packet to default port 5633/TCP.

screenshot