CVE-2008-4399
 
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in the database engine service in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to cause a denial of service (crash) via a crafted request, related to "insufficient validation."
Vulnerabilidad no especificada en el servicio del motor de la base de datos en asdbapi.dll en CA ARCserve Backup (antes BrightStor ARCserve Backup) vr11.1 hasta vr12.0 permite a atacantes remotos provocar una denegación de servicio (caída) a través de una petición manipulada, relacionado con "validación insuficiente".
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-10-02 CVE Reserved
- 2008-10-09 CVE Published
- 2024-08-07 CVE Updated
- 2024-09-14 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (7)
URL | Tag | Source |
---|---|---|
http://www.securityfocus.com/archive/1/497218 | Mailing List | |
http://www.securityfocus.com/bid/31684 | Vdb Entry | |
http://www.securitytracker.com/id?1021032 | Vdb Entry | |
http://www.vupen.com/english/advisories/2008/2777 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/45776 | Vdb Entry |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=188143 | 2021-04-09 |
URL | Date | SRC |
---|---|---|
http://secunia.com/advisories/32220 | 2021-04-09 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Broadcom Search vendor "Broadcom" | Arcserve Backup Search vendor "Broadcom" for product "Arcserve Backup" | r12.0 Search vendor "Broadcom" for product "Arcserve Backup" and version "r12.0" | - |
Affected
| ||||||
Broadcom Search vendor "Broadcom" | Business Protection Suite Search vendor "Broadcom" for product "Business Protection Suite" | r2 Search vendor "Broadcom" for product "Business Protection Suite" and version "r2" | - |
Affected
| ||||||
Broadcom Search vendor "Broadcom" | Server Protection Suite Search vendor "Broadcom" for product "Server Protection Suite" | r2 Search vendor "Broadcom" for product "Server Protection Suite" and version "r2" | - |
Affected
| ||||||
Ca Search vendor "Ca" | Arcserve Backup Search vendor "Ca" for product "Arcserve Backup" | r11.1 Search vendor "Ca" for product "Arcserve Backup" and version "r11.1" | - |
Affected
| ||||||
Ca Search vendor "Ca" | Arcserve Backup Search vendor "Ca" for product "Arcserve Backup" | r11.5 Search vendor "Ca" for product "Arcserve Backup" and version "r11.5" | - |
Affected
| ||||||
Ca Search vendor "Ca" | Business Protection Suite Search vendor "Ca" for product "Business Protection Suite" | r2 Search vendor "Ca" for product "Business Protection Suite" and version "r2" | microsoft_small_business_server_premium |
Affected
| ||||||
Ca Search vendor "Ca" | Business Protection Suite Search vendor "Ca" for product "Business Protection Suite" | r2 Search vendor "Ca" for product "Business Protection Suite" and version "r2" | microsoft_small_business_server_standard |
Affected
|