CVE-2009-3448

npvmgr.exe in BakBone NetVault Backup 8.22 Build 29 allows remote attackers to cause a denial of service (daemon crash) via a packet to (1) TCP or (2) UDP port 20031 with a large value in an unspecified size field, which is not properly handled in a malloc operation.  NOTE: some of these details are obtained from third party information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
VendorProductVersion
bakbonenetvault
8.22
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/58329
http://secunia.com/advisories/36847
http://www.insight-tech.org/index.php?p=bakbone-netvault-backup-8-22-build-29-remote-dos
http://www.securityfocus.com/bid/36489
http://www.securitytracker.com/id?1022941
https://exchange.xforce.ibmcloud.com/vulnerabilities/53434
http://osvdb.org/58329
http://secunia.com/advisories/36847
http://www.insight-tech.org/index.php?p=bakbone-netvault-backup-8-22-build-29-remote-dos
http://www.securityfocus.com/bid/36489
http://www.securitytracker.com/id?1022941
https://exchange.xforce.ibmcloud.com/vulnerabilities/53434