CVE-2007-1593
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
04/06/2007
Last modified:
09/04/2025
Description
The administrative service in Symantec Veritas Volume Replicator (VVR) for Windows 3.1 through 4.3, and VVR for Unix 3.5 through 5.0, in Symantec Storage Foundation products allows remote attackers to cause a denial of service (memory consumption and service crash) via a crafted packet to the service port (8199/tcp) that triggers a request for more memory than available, which causes the service to write to an invalid pointer.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:symantec:veritas_volume_replicator:3.1:*:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:3.5:*:unix:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.0:*:unix:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.1:*:unix:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.1:*:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.1:rp1:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.2:*:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.2:rp1:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.2:rp2:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.3:*:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:4.3:mp3:windows:*:*:*:*:* | ||
| cpe:2.3:a:symantec:veritas_volume_replicator:5.0:*:unix:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://cirt.dk/advisories/cirt-53-advisory.txt
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=539
- http://osvdb.org/36102
- http://secunia.com/advisories/25516
- http://www.securityfocus.com/bid/24160
- http://www.securitytracker.com/id?1018184=
- http://www.symantec.com/avcenter/security/Content/2007.06.01a.html
- http://www.vupen.com/english/advisories/2007/2036
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34676
- http://cirt.dk/advisories/cirt-53-advisory.txt
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=539
- http://osvdb.org/36102
- http://secunia.com/advisories/25516
- http://www.securityfocus.com/bid/24160
- http://www.securitytracker.com/id?1018184=
- http://www.symantec.com/avcenter/security/Content/2007.06.01a.html
- http://www.vupen.com/english/advisories/2007/2036
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34676