CVE-2009-3448
BakBone NetVault Backup 8.22 Build 29 - Denial of Service via Large Size Field in TCP/UDP Port 20031
Title source: llmDescription
npvmgr.exe in BakBone NetVault Backup 8.22 Build 29 allows remote attackers to cause a denial of service (daemon crash) via a packet to (1) TCP or (2) UDP port 20031 with a large value in an unspecified size field, which is not properly handled in a malloc operation. NOTE: some of these details are obtained from third party information.
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1022941
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/58329
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/36489
Exploit, URL Repurposed x_refsource_misc
http://www.insight-tech.org/index.php?p=bakbone-netvault-backup-8-22-build-29-remote-dos
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/53434
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/36847
Scores
EPSS
0.0172
EPSS Percentile
74.8%
Details
CWE
CWE-20
Status
published
Products (1)
bakbone/netvault
8.22
Published
Sep 29, 2009
Tracked Since
Feb 18, 2026