EUVD-2009-3430

Malware in sbrugna...

Information disclosure

npvmgr.exe in BakBone NetVault Backup 8.22 Build 29 allows remote attackers to cause a denial of service daemon crash via a packet to 1 TCP or 2 UDP port 20031 with a large value in an unspecified size field, which is not properly handled in a malloc operation. NOTE: some of these details are...

CVE-2009-3448

CVE-2009-3448 affects BakBone NetVault Backup 8.22 Build 29 (npvmgr.exe). A remote attacker can cause a denial-of-service (daemon crash) by sending a packet to either TCP or UDP port 20031 containing a large value in an unspecified size field, which is not properly handled in a malloc operation. ...

BakBone NetVault: Backup npvmgr.exe服务远程拒绝服务漏洞

BUGTRAQ ID: 36489 NetVault: Backup是一款实时备份和灾难恢复软件。 NetVault: Backup的npvmgr.exe进程没有执行长度检查便将从网络报文中获得的字段传送给了malloc，远程攻击者可以通过向20031端口发送特制的UDP或TCP报文导致服务崩溃。 BakBone NetVault: Backup 8.22 Build 29 厂商补丁： BakBone ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.bakbone.com/...