Vulnerability Description
Acronis True Image Windows Agent 1.0.0.54 and earlier, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote attackers to cause a denial of service (crash) via a malformed packet to port 9876, which triggers a NULL pointer dereference.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Acronis | True Image | <= 9.5.0.8072 |
| Acronis | True Image Windows Agent | <= 1.0.0.54 |
Related Weaknesses (CWE)
References
- http://aluigi.altervista.org/adv/acroagent-adv.txt
- http://secunia.com/advisories/29306Vendor Advisory
- http://www.securityfocus.com/archive/1/489362/100/0/threaded
- http://www.securityfocus.com/bid/28169
- http://www.vupen.com/english/advisories/2008/0812/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41070
- http://aluigi.altervista.org/adv/acroagent-adv.txt
- http://secunia.com/advisories/29306Vendor Advisory
- http://www.securityfocus.com/archive/1/489362/100/0/threaded
- http://www.securityfocus.com/bid/28169
- http://www.vupen.com/english/advisories/2008/0812/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41070
FAQ
What is CVE-2008-1280?
CVE-2008-1280 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Acronis True Image Windows Agent 1.0.0.54 and earlier, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote attackers to cause a denial of servi...
How severe is CVE-2008-1280?
CVE-2008-1280 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1280?
Check the references section above for vendor advisories and patch information. Affected products include: Acronis True Image, Acronis True Image Windows Agent.