CVE-2008-3290

Name of the Vulnerable Software and Affected Versions: EMC Dantz Retrospect Backup Client version 7.5.116

Description: The issue allows remote attackers to cause a denial of service, resulting in a daemon crash. This is achieved by sending a series of long packets containing 0x00 characters to TCP port 497, which triggers memory corruption. The problem is likely related to the interaction between an English product version and a Chinese OS version.

Recommendations: For version 7.5.116, consider restricting access to TCP port 497 to minimize the risk of exploitation until a patch is available. As a temporary workaround, implement network traffic filtering to block long packets containing 0x00 characters destined for TCP port 497.