CVE-2008-1280

Acronis True Image Windows Agent < 1.0.0.54 - Denial of Service via Malformed Packet to Port 9876

Title source: llm
STIX 2.1

Description

Acronis True Image Windows Agent 1.0.0.54 and earlier, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote attackers to cause a denial of service (crash) via a malformed packet to port 9876, which triggers a NULL pointer dereference.

References (6)

Core 6
Core References
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/29306
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41070
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0812/references
Third Party Advisory x_refsource_misc
http://aluigi.altervista.org/adv/acroagent-adv.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/28169
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/489362/100/0/threaded

Scores

EPSS 0.0138
EPSS Percentile 80.5%

Details

CWE
CWE-20
Status published
Products (2)
acronis/true_image < 9.5.0.8072
acronis/true_image_windows_agent < 1.0.0.54
Published Mar 10, 2008
Tracked Since Feb 18, 2026