CVE-2008-4400
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to cause a denial of service (crash of multiple services) via crafted authentication credentials, related to "insufficient validation."
Vulnerabilidad sin especificar en asdbapi.dll de CA ARCserve Backup (antes llamado BrightStor ARCserve Backup)r11.1 hasta r12.0 permite a un atacante remoto causar una denegación de servicio (caída de varios servicios) por medio de credenciales de autentificación manipulados, relacionado con una validación insuficiente.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-10-02 CVE Reserved
- 2008-10-09 CVE Published
- 2024-08-07 CVE Updated
- 2024-09-14 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/archive/1/497218 | Mailing List | |
| http://www.securityfocus.com/bid/31684 | Vdb Entry | |
| http://www.securitytracker.com/id?1021032 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2008/2777 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/45777 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=188143 | 2021-04-09 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/32220 | 2021-04-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Broadcom Search vendor "Broadcom" | Arcserve Backup Search vendor "Broadcom" for product "Arcserve Backup" | r12.0 Search vendor "Broadcom" for product "Arcserve Backup" and version "r12.0" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Business Protection Suite Search vendor "Broadcom" for product "Business Protection Suite" | r2 Search vendor "Broadcom" for product "Business Protection Suite" and version "r2" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Server Protection Suite Search vendor "Broadcom" for product "Server Protection Suite" | r2 Search vendor "Broadcom" for product "Server Protection Suite" and version "r2" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Arcserve Backup Search vendor "Ca" for product "Arcserve Backup" | r11.1 Search vendor "Ca" for product "Arcserve Backup" and version "r11.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Arcserve Backup Search vendor "Ca" for product "Arcserve Backup" | r11.5 Search vendor "Ca" for product "Arcserve Backup" and version "r11.5" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Business Protection Suite Search vendor "Ca" for product "Business Protection Suite" | r2 Search vendor "Ca" for product "Business Protection Suite" and version "r2" | microsoft_small_business_server_premium |
Affected
| ||||||
| Ca Search vendor "Ca" | Business Protection Suite Search vendor "Ca" for product "Business Protection Suite" | r2 Search vendor "Ca" for product "Business Protection Suite" and version "r2" | microsoft_small_business_server_standard |
Affected
| ||||||