Description

This article provides an overview of the impact of Distributed Component Object Model (DCOM) hardening on the following Veritas products:

• Enterprise Vault (12.5 and onwards)
• Compliance Accelerator (12.5 and onwards)
• Discovery Accelerator (12.5 and onwards)

Hereafter, the above-referenced Veritas products of the corresponding versions are referred to as “Products” in this article.

Objective

Test and analyze potential impacts on our Products when they are running in the environments having DCOM hardening enabled.

Background

The DCOM Remote Protocol exposes the application objects using remote procedure calls (RPCs). DCOM is used for communication between the software components of the networked devices. To protect against the CVE-2021-26414 (Windows DCOM Server Security Feature Bypass vulnerability). Microsoft's recommendation is to verify if client or server applications in your environment that use DCOM or RPC work as expected with the hardening changes.

Additional details of the timeline of the changes and the recommended actions to perform are mentioned in Microsoft KB article 5004442.

Impact on the Products

Veritas enabled the DCOM hardening-related registry changes recommended in Microsoft KB article 5004442 and performed tests on the Products. These tests did not detect any impact or other issues and all the functionalities worked as expected.