Summary:  Veritas has released a series of hotfixes for its Backup Exec suite of products (running on Windows Servers). These hotfixes address a previously-unpatched vulnerability (detailed in ALARM Alert 081205-01 "New exploit for VERITAS Backup Exec Remote Agent for Windows") for which an active exploit was available and observed to be cirulating in the wild.

Recommended Actions:  System Administrators who maintain vulnerable builds this product are encouraged to visit the vendor's Security Advisory page (link provided below) and (if appropriate) apply the necessary hotfixes as soon as possible. See 'ITS Actions' (below) for additional information that may affect your operations.

ITS Actions:  ITS installed a temporarily block on August 12 for port 10000 traffic (inbound from the Internet) in keeping with the recommendations of various security agencies (to reduce the potential for widespread infection). The block for port 10000 will tentatively remain in place until August 26; at that time removal of the block will be reconsidered. An update will be issued if this situation changes.

Resources:
Veritas Security Advisory Page: http://seer.support.veritas.com/docs/278434.htm

FrSIRT description of vulnerability (updated to reflect patch availability): http://www.frsirt.com/english/advisories/2005/1387