CVE-2008-1979

Currently unrated

Key Information:

Vendor: Broadcom
Status: Brightstor Arcserve Backup
Vendor: CVE Published:; 27 April 2008

Summary

The Discovery Service (casdscvc) in CA ARCserve Backup 12.0.5454.0 and earlier allows remote attackers to cause a denial of service (crash) via a packet with a large integer value used in an increment to TCP port 41523, which triggers a buffer over-read.

References

http://aluigi.altervista.org/adv/carcbackazz-adv.txt

x_refsource_MISC

http://www.securityfocus.com/archive/1/493430/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://secunia.com/advisories/29855

third-party-advisoryx_refsource_SECUNIA

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Apr 27, 2008
Vulnerability Reserved
Apr 27, 2008