CVE-2006-0995 - EMC Dantz Retrospect 7 backup client 7.0.107, and other versions before 7.0.109, and 6.5 before 6.5.

CVE-2006-0995

Summary

EMC Dantz Retrospect 7 backup client 7.0.107, and other versions before 7.0.109, and 6.5 before 6.5.138 allows remote attackers to cause a denial of service (client termination and loss of backup service) via a malformed packet to TCP port 497, which triggers an assert error. This vulnerability affects EMC Dantz, Retrospect versions 7.0.x (all 7.0.x versions previous to 7.0.109) as well as versions 6.5.x (all 6.5.x versions previous to 6.5.138)

References

Vulnerable Configurations

cpe:2.3:a:emc_dantz:retrospect:6.5:*:*:*:*:*:*:*
cpe:2.3:a:emc_dantz:retrospect:6.5:*:*:*:*:*:*:*
cpe:2.3:a:emc_dantz:retrospect:7.0:*:*:*:*:*:*:*
cpe:2.3:a:emc_dantz:retrospect:7.0:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 20-07-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	16933
confirm	http://kb.dantz.com/article.asp?article=8361&p=2
idefense	20060302 EMC Dantz Retrospect 7 Backup client DoS Vulnerability
sectrack	1015714
secunia	19097
vupen	ADV-2006-0811
xf	retrospect-backup-packet-dos(25143)

Last major update

20-07-2017 - 01:30

Published

03-03-2006 - 21:02

Last modified

20-07-2017 - 01:30