Null pointer dereference

2008-03-1023:44:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.021 Low

EPSS

Percentile

89.3%

JSON

Acronis True Image Windows Agent 1.0.0.54 and earlier, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote attackers to cause a denial of service (crash) via a malformed packet to port 9876, which triggers a NULL pointer dereference.

CPENameOperatorVersion
true_imagele9.5.0.8072
true_image_windows_agentle1.0.0.54

CPE	Name	Operator	Version
	true_image	le	9.5.0.8072
	true_image_windows_agent	le	1.0.0.54

References

aluigi.altervista.org/adv/acroagent-adv.txt

secunia.com/advisories/29306

www.securityfocus.com/archive/1/489362/100/0/threaded

www.securityfocus.com/bid/28169

www.vupen.com/english/advisories/2008/0812/references

exchange.xforce.ibmcloud.com/vulnerabilities/41070