CVE-2008-1280

Acronis True Image <1.0.0.54 - DoS

Title source: llm

Description

Acronis True Image Windows Agent 1.0.0.54 and earlier, included in Acronis True Image Enterprise Server 9.5.0.8072 and the other True Image packages, allows remote attackers to cause a denial of service (crash) via a malformed packet to port 9876, which triggers a NULL pointer dereference.

References (6)

[Third Party Advisory] http://aluigi.altervista.org/adv/acroagent-adv.txt

[Vendor Advisory] http://secunia.com/advisories/29306

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/41070

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/489362/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/28169

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/0812/references

Scores

EPSS 0.0138

EPSS Percentile 80.1%

Classification

CWE

CWE-20

Status draft

Affected Products (2)

acronis/true_image < 9.5.0.8072

acronis/true_image_windows_agent < 1.0.0.54

Timeline

Published Mar 10, 2008

Tracked Since Feb 18, 2026