Vulnerabilities > CVE-2008-0977 - Resource Management Errors vulnerability in Double-Take Software Double-Take 4.5/5.0.0.2865

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
double-take-software
CWE-399

Summary

Double-Take 5.0.0.2865 and earlier, distributed under the HP StorageWorks Storage Mirroring name and other names, allows remote attackers to cause a denial of service (daemon crash) via a certain long packet that triggers an attempt to allocate a large amount of memory.

Vulnerable Configurations

Part Description Count
Application
Double-Take_Software
2

Common Weakness Enumeration (CWE)

Statements

contributor
lastmodified2009-05-08
organizationDouble-Take
statementThis issue was fixed in version 5.1 which was released July 11, 2008