Описание
Multiple integer overflows in the Job Engine (bengine.exe) service in Symantec Backup Exec for Windows Servers (BEWS) 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service (CPU and memory consumption) via a crafted packet to port 5633/tcp, which triggers an infinite loop.
Ссылки
- Patch
- Vendor Advisory
- Patch
- Patch
- Patch
- Vendor Advisory
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:symantec:backupexec_system_recovery:11.0.6235:*:windows:*:*:*:*:*
cpe:2.3:a:symantec:backupexec_system_recovery:11.0.7170:*:windows:*:*:*:*:*
EPSS
Процентиль: 80%
0.01349
Низкий
7.8 High
CVSS2
Дефекты
CWE-189
Связанные уязвимости
github
почти 4 года назад
Multiple integer overflows in the Job Engine (bengine.exe) service in Symantec Backup Exec for Windows Servers (BEWS) 11d build 11.0.7170 and 11.0.6.6235 allow remote attackers to cause a denial of service (CPU and memory consumption) via a crafted packet to port 5633/tcp, which triggers an infinite loop.
EPSS
Процентиль: 80%
0.01349
Низкий
7.8 High
CVSS2
Дефекты
CWE-189