Vulnerabilities > CVE-2008-0974 - Resource Management Errors vulnerability in multiple products

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
double-take-software
hp
CWE-399

Summary

Double-Take 5.0.0.2865 and earlier, distributed under the HP StorageWorks Storage Mirroring name and other names, allows remote attackers to cause a denial of service (daemon termination) via (1) a large vector<T> value, which raises a "vector<T> too long" exception; or (2) a certain packet that raises an ospace/time/src\date.cpp exception.

Common Weakness Enumeration (CWE)

Statements

contributor
lastmodified2009-05-08
organizationDouble-Take
statementThis issue was fixed in version 5.1 which was released July 11, 2008