|Hat-Squad Security Team has discovered multiple heap and stack buffer
overflow vulnerabilities in Bakbone NetVault product.
http://www.class101.org/netv-remhbof.pdf (remote heap overflow)
http://www.class101.org/netv-locsbof.pdf (local stack overflow)
Proof of Concept codes :
At the moment writing this advisory, NO PATCH IS RELEASED, we can only suggest to :
Restrict all incoming connections to 20031/tcp and 20031/udp, a fix might come very soon.
Hat-Squad Security Team,