CVE-2008-6219

Severity Score

7.8

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

nsrexecd.exe in multiple EMC Networker products including EMC NetWorker Server, Storage Node, and Client 7.3.x and 7.4, 7.4.1, 7.4.2, Client and Storage Node for Open VMS 7.3.2 ECO6 and earlier, Module for Microsoft Exchange 5.1 and earlier, Module for Microsoft Applications 2.0 and earlier, Module for Meditech 2.0 and earlier, and PowerSnap 2.4 SP1 and earlier does not properly control the allocation of memory, which allows remote attackers to cause a denial of service (memory exhaustion) via multiple crafted RPC requests.

nsrexecd.exe en multiples productos de EMC Networker incluidos EMC NetWorker Server, Storage Node, y Client v7.3.x y v7.4, v7.4.1, v7.4.2, Client y Storage Node para Open VMS v7.3.2 ECO6 y anteriores, Module for Microsoft Exchange v5.1 y anteriores, Module for Microsoft Applications v2.0 y anteriores, Module for Meditech v2.0 y anteriores, y PowerSnap v2.4 SP1 y anteriores no manejan correctamente la localizacion de memoria, lo que permite a atacantes remotos producir una denegacion de servicio (agotamiento de memoria) a traves de multiples peticiones RPC manipuladas

*Credits: N/A

CVSS Scores

NISTv2 7.8

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2009-02-20 CVE Reserved
2009-02-20 CVE Published
2024-06-19 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-399: Resource Management Errors

CAPEC

References (8)

URL	Tag	Source
http://www.fortiguardcenter.com/advisory/FGA-2008-23.html	X_refsource_misc
http://www.securityfocus.com/archive/1/497645/100/0/threaded	Mailing List
http://www.securityfocus.com/archive/1/497666/100/0/threaded	Mailing List
http://www.securityfocus.com/bid/31866	Vdb Entry
http://www.securitytracker.com/id?1021095	Vdb Entry
http://www.vupen.com/english/advisories/2008/2894	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/46035	Vdb Entry

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/32383	2018-10-11

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Emc Search vendor "Emc"		Networker Client Search vendor "Emc" for product "Networker Client"				<= 7.3 Search vendor "Emc" for product "Networker Client" and version " <= 7.3"		sp3		Affected
Emc Search vendor "Emc"		Networker Client Search vendor "Emc" for product "Networker Client"				<= 7.3.2 Search vendor "Emc" for product "Networker Client" and version " <= 7.3.2"		eco6, open_vms		Affected
Emc Search vendor "Emc"		Networker Client Search vendor "Emc" for product "Networker Client"				7.4 Search vendor "Emc" for product "Networker Client" and version "7.4"		-		Affected
Emc Search vendor "Emc"		Networker Client Search vendor "Emc" for product "Networker Client"				7.4.1 Search vendor "Emc" for product "Networker Client" and version "7.4.1"		-		Affected
Emc Search vendor "Emc"		Networker Client Search vendor "Emc" for product "Networker Client"				7.4.2 Search vendor "Emc" for product "Networker Client" and version "7.4.2"		-		Affected
Emc Search vendor "Emc"		Networker Module Search vendor "Emc" for product "Networker Module"				<= 2.0 Search vendor "Emc" for product "Networker Module" and version " <= 2.0"		meditech		Affected
Emc Search vendor "Emc"		Networker Module Search vendor "Emc" for product "Networker Module"				<= 2.0 Search vendor "Emc" for product "Networker Module" and version " <= 2.0"		microsoft_applications		Affected
Emc Search vendor "Emc"		Networker Module Search vendor "Emc" for product "Networker Module"				<= 5.1 Search vendor "Emc" for product "Networker Module" and version " <= 5.1"		microsoft_exchange		Affected
Emc Search vendor "Emc"		Networker Powersnap Search vendor "Emc" for product "Networker Powersnap"				<= 2.4 Search vendor "Emc" for product "Networker Powersnap" and version " <= 2.4"		sp1		Affected
Emc Search vendor "Emc"		Networker Server Search vendor "Emc" for product "Networker Server"				<= 7.3 Search vendor "Emc" for product "Networker Server" and version " <= 7.3"		sp3		Affected
Emc Search vendor "Emc"		Networker Server Search vendor "Emc" for product "Networker Server"				7.4 Search vendor "Emc" for product "Networker Server" and version "7.4"		-		Affected
Emc Search vendor "Emc"		Networker Server Search vendor "Emc" for product "Networker Server"				7.4.1 Search vendor "Emc" for product "Networker Server" and version "7.4.1"		-		Affected
Emc Search vendor "Emc"		Networker Server Search vendor "Emc" for product "Networker Server"				7.4.2 Search vendor "Emc" for product "Networker Server" and version "7.4.2"		-		Affected
Emc Search vendor "Emc"		Networker Storage Node Search vendor "Emc" for product "Networker Storage Node"				<= 7.3 Search vendor "Emc" for product "Networker Storage Node" and version " <= 7.3"		sp3		Affected
Emc Search vendor "Emc"		Networker Storage Node Search vendor "Emc" for product "Networker Storage Node"				<= 7.3.2 Search vendor "Emc" for product "Networker Storage Node" and version " <= 7.3.2"		eco6, open_vms		Affected
Emc Search vendor "Emc"		Networker Storage Node Search vendor "Emc" for product "Networker Storage Node"				7.4 Search vendor "Emc" for product "Networker Storage Node" and version "7.4"		-		Affected
Emc Search vendor "Emc"		Networker Storage Node Search vendor "Emc" for product "Networker Storage Node"				7.4.1 Search vendor "Emc" for product "Networker Storage Node" and version "7.4.1"		-		Affected
Emc Search vendor "Emc"		Networker Storage Node Search vendor "Emc" for product "Networker Storage Node"				7.4.2 Search vendor "Emc" for product "Networker Storage Node" and version "7.4.2"		-		Affected