CVE-2008-6219

Name of the Vulnerable Software and Affected Versions: EMC NetWorker Server versions 7.3.x through 7.4.2 EMC NetWorker Storage Node versions 7.3.x through 7.4.2 EMC NetWorker Client versions 7.3.x through 7.4.2 EMC NetWorker Client for Open VMS version 7.3.2 ECO6 and earlier EMC NetWorker Module for Microsoft Exchange version 5.1 and earlier EMC NetWorker Module for Microsoft Applications version 2.0 and earlier EMC NetWorker Module for Meditech version 2.0 and earlier EMC NetWorker PowerSnap version 2.4 SP1 and earlier

Description: The issue is related to the nsrexecd.exe component in multiple EMC Networker products, which does not properly control memory allocation. This allows remote attackers to cause a denial of service, specifically memory exhaustion, by sending multiple crafted RPC requests.

Recommendations: For EMC NetWorker Server versions 7.3.x through 7.4.2, update to a version that includes the fix for the memory allocation issue. For EMC NetWorker Storage Node versions 7.3.x through 7.4.2, update to a version that includes the fix for the memory allocation issue. For EMC NetWorker Client versions 7.3.x through 7.4.2, update to a version that includes the fix for the memory allocation issue. For EMC NetWorker Client for Open VMS version 7.3.2 ECO6 and earlier, update to a version that includes the fix for the memory allocation issue. For EMC NetWorker Module for Microsoft Exchange version 5.1 and earlier, update to a version that includes the fix for the memory allocation issue. For EMC NetWorker Module for Microsoft Applications version 2.0 and earlier, update to a version that includes the fix for the memory allocation issue. For EMC NetWorker Module for Meditech version 2.0 and earlier, update to a version that includes the fix for the memory allocation issue. For EMC NetWorker PowerSnap version 2.4 SP1 and earlier, update to a version that includes the fix for the memory allocation issue.