CVE-2007-1593
Symantec Veritas Volume Replicator 3.1-4.3 for Windows and 3.5-5.0 for Unix - Denial of Service via Crafted Packet
Title source: llmDescription
The administrative service in Symantec Veritas Volume Replicator (VVR) for Windows 3.1 through 4.3, and VVR for Unix 3.5 through 5.0, in Symantec Storage Foundation products allows remote attackers to cause a denial of service (memory consumption and service crash) via a crafted packet to the service port (8199/tcp) that triggers a request for more memory than available, which causes the service to write to an invalid pointer.
References (9)
Core 9
Core References
Various Sources x_refsource_misc
http://cirt.dk/advisories/cirt-53-advisory.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/34676
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/36102
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/25516
Patch x_refsource_confirm
http://www.symantec.com/avcenter/security/Content/2007.06.01a.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018184
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2036
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/24160
Patch, Vendor Advisory third-party-advisory
x_refsource_idefense
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=539
Scores
EPSS
0.0383
EPSS Percentile
88.3%
Details
CWE
CWE-399
Status
published
Products (7)
symantec/veritas_volume_replicator
3.1
symantec/veritas_volume_replicator
3.5
symantec/veritas_volume_replicator
4.0
symantec/veritas_volume_replicator
4.1 (3 CPE variants)
symantec/veritas_volume_replicator
4.2 (3 CPE variants)
symantec/veritas_volume_replicator
4.3 (2 CPE variants)
symantec/veritas_volume_replicator
5.0
Published
Jun 04, 2007
Tracked Since
Feb 18, 2026