CVE-2005-3659

Vulnerability Description

nsrd.exe in EMC Legato NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, and other products such as Sun Solstice Backup (SBU) 6.0 and 6.1 and StorEdge Enterprise Backup Software (EBS) 7.1 through 7.2L, allows remote attackers to cause a denial of service (nsrd service crash) via a malformed RPC request to RPC program number 390109, which triggers a null dereference.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• ftp://ftp.legato.com/pub/NetWorker/Updates/LGTpa83990/README.TXTPatch
• http://secunia.com/advisories/18495ExploitPatchVendor Advisory
• http://secunia.com/advisories/18615PatchVendor Advisory
• http://securitytracker.com/id?1015500Patch
• http://securitytracker.com/id?1015545Patch
• http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102148-1
• http://www.idefense.com/intelligence/vulnerabilities/display.php?id=375ExploitPatch
• http://www.legato.com/support/websupport/product_alerts/011606_NW.htmPatch
• http://www.securityfocus.com/bid/16275Patch
• http://www.vupen.com/english/advisories/2006/0233Vendor Advisory
• http://www.vupen.com/english/advisories/2006/0343Vendor Advisory
• https://exchange.xforce.ibmcloud.com/vulnerabilities/24173
• ftp://ftp.legato.com/pub/NetWorker/Updates/LGTpa83990/README.TXTPatch
• http://secunia.com/advisories/18495ExploitPatchVendor Advisory
• http://secunia.com/advisories/18615PatchVendor Advisory