Zhenhua Liu

**Name of the Vulnerable Software and Affected Versions** HP StorageWorks Storage Mirroring version 5 before 5.1.1.1090.15 **Description** The issue allows remote attackers to cause a denial of service or obtain access via unknown vectors. **Recommendations** For HP StorageWorks Storage Mirroring version 5 before 5.1.1.1090.15, update to version 5.1.1.1090.15 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** HP StorageWorks Storage Mirroring version 5 before 5.1.1.1090.15 **Description** The issue allows remote attackers to cause a denial of service via unknown vectors. **Recommendations** For HP StorageWorks Storage Mirroring version 5 before 5.1.1.1090.15, update to version 5.1.1.1090.15 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** HP StorageWorks Storage Mirroring version 5.1.1.1090.15 and earlier, specifically versions prior to 5.1.1.1090.15 **Description** The issue allows remote attackers to execute arbitrary code. The exact vectors used for the attack are not specified. **Recommendations** For versions prior to 5.1.1.1090.15, update to version 5.1.1.1090.15 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple iTunes versions prior to 8.1 **Description** The issue allows remote attackers to cause a denial of service, resulting in an infinite loop, by sending a Digital Audio Access Protocol (DAAP) message with a crafted `Content-Length` header. **Recommendations** For versions prior to 8.1, update to version 8.1 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: EMC Dantz Retrospect Backup Server version 7.5.508 Description: The issue concerns the Server Authentication Module, which utilizes a weak hash algorithm. This weakness makes it easier for attackers to recover passwords, particularly in context-dependent attacks. Recommendations: For version 7.5.508, consider updating to a newer version that addresses the weak hash algorithm issue, as this would strengthen password security and mitigate the risk of password recovery by attackers. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: EMC Dantz Retrospect Backup Client version 7.5.116 Description: The issue allows remote attackers to obtain sensitive information via a crafted packet, as the password hash is sent in cleartext. Recommendations: For version 7.5.116, consider restricting access to the backup client to minimize the risk of exploitation until a patch is available.