PT-2008-1450 · Symantec · Symantec Veritas Storage Foundation

Published

2008-02-21

Updated

2011-03-08

CVE-2007-4516

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Symantec Veritas Storage Foundation version 5.0 for Windows

Description The issue concerns the Volume Manager Scheduler Service, also known as VxSchedService.exe, which is susceptible to denial of service attacks. Remote attackers can exploit this by sending malformed packets, resulting in the daemon crashing or hanging.

Recommendations For Symantec Veritas Storage Foundation version 5.0 for Windows, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2007-4516

Affected Products

Symantec Veritas Storage Foundation

PT-2008-1450 · Symantec · Symantec Veritas Storage Foundation

CVE-2007-4516

Weakness Enumeration

Related Identifiers

Affected Products

References · 8