CVE-2007-4347

Currently unrated

Key Information:

Vendor: Symantec
Status: Backupexec System Recovery
Vendor: CVE Published:; 29 November 2007

Summary

Multiple integer overflows in the Job Engine (bengine.exe) service in Symantec Backup Exec for Windows Servers (BEWS) 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service (CPU and memory consumption) via a crafted packet to port 5633/tcp, which triggers an infinite loop.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/38677

vdb-entryx_refsource_XF

http://secunia.com/advisories/26975

third-party-advisoryx_refsource_SECUNIA

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

Timeline

Vulnerability published
Nov 29, 2007
Vulnerability Reserved
Aug 14, 2007