CVE-2012-0407

Name of the Vulnerable Software and Affected Versions EMC Data Protection Advisor versions 5.5 through 5.8 SP1

Description The issue is related to an integer overflow in the DPA Utilities library, which allows remote attackers to cause a denial of service, resulting in an infinite loop. This can be achieved by providing a negative 64-bit value in a certain size field.

Recommendations For versions 5.5 through 5.8 SP1, consider restricting access to the DPA Utilities library until a patch is available. As a temporary workaround, avoid using negative 64-bit values in size fields to prevent the infinite loop. At the moment, there is no information about a newer version that contains a fix for this issue.