ID CVE-2008-0976
Summary Double-Take 5.0.0.2865 and earlier, distributed under the HP StorageWorks Storage Mirroring name and other names, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a malformed packet, as demonstrated by a packet of type (1) 0x2722 or (2) 0x272a.
References
Vulnerable Configurations
  • cpe:2.3:a:double-take_software:double-take:4.5:*:*:*:*:*:*:*
    cpe:2.3:a:double-take_software:double-take:4.5:*:*:*:*:*:*:*
  • cpe:2.3:a:double-take_software:double-take:4.5.1.1869.6.s.3:*:*:*:*:*:*:*
    cpe:2.3:a:double-take_software:double-take:4.5.1.1869.6.s.3:*:*:*:*:*:*:*
  • cpe:2.3:a:hp:storageworks_double-take:*:*:*:*:*:*:*:*
    cpe:2.3:a:hp:storageworks_double-take:*:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 15-10-2018 - 22:04)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
bid 27951
bugtraq 20080222 Multiple vulnerabilities in Double-Take 5.0.0.2865
misc
secunia 29075
sreason 3698
vupen ADV-2008-0666
statements via4
contributor
lastmodified 2009-05-08
organization Double-Take
statement This issue was fixed in version 5.1 which was released July 11, 2008
Last major update 15-10-2018 - 22:04
Published 25-02-2008 - 23:44
Last modified 15-10-2018 - 22:04
Back to Top