Vulnerabilities > CVE-2006-0995 - Remote Denial of Service vulnerability in EMC Dantz Retrospect Backup Client
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
EMC Dantz Retrospect 7 backup client 7.0.107, and other versions before 7.0.109, and 6.5 before 6.5.138 allows remote attackers to cause a denial of service (client termination and loss of backup service) via a malformed packet to TCP port 497, which triggers an assert error. This vulnerability affects EMC Dantz, Retrospect versions 7.0.x (all 7.0.x versions previous to 7.0.109) as well as versions 6.5.x (all 6.5.x versions previous to 6.5.138)
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Nessus
| NASL family | Misc. |
| NASL id | RETROSPECT_CLIENT_DOS.NASL |
| description | According to its version number, the installed instance of Retrospect Client for Windows reportedly will stop working if it receives a packet starting with a specially crafted sequence of bytes. An unauthenticated, remote attacker may be able to leverage this flaw to prevent the affected host from being backed up. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 20996 |
| published | 2006-03-03 |
| reporter | This script is Copyright (C) 2006-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/20996 |
| title | Retrospect Client Malformed Packet DoS |
References
- http://kb.dantz.com/article.asp?article=8361&p=2
- http://secunia.com/advisories/19097
- http://securitytracker.com/id?1015714
- http://www.idefense.com/application/poi/display?type=vulnerabilities
- http://www.securityfocus.com/bid/16933
- http://www.vupen.com/english/advisories/2006/0811
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25143