CVE-2007-1593

Sažetak

The administrative service in Symantec Veritas Volume Replicator (VVR) for Windows 3.1 through 4.3, and VVR for Unix 3.5 through 5.0, in Symantec Storage Foundation products allows remote attackers to cause a denial of service (memory consumption and service crash) via a crafted packet to the service port (8199/tcp) that triggers a request for more memory than available, which causes the service to write to an invalid pointer.

Reference

http://cirt.dk/advisories/cirt-53-advisory.txt
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=539
http://osvdb.org/36102
http://secunia.com/advisories/25516
http://www.securityfocus.com/bid/24160
http://www.securitytracker.com/id?1018184
http://www.symantec.com/avcenter/security/Content/2007.06.01a.html
http://www.vupen.com/english/advisories/2007/2036
https://exchange.xforce.ibmcloud.com/vulnerabilities/34676

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

29-07-2017 - 01:30

Objavljeno

04-06-2007 - 16:30