ByteOS Network

Source-cve@mitre.org

Published At-04 Jun, 2007 | 16:30

Updated At-23 Apr, 2026 | 00:35

The administrative service in Symantec Veritas Volume Replicator (VVR) for Windows 3.1 through 4.3, and VVR for Unix 3.5 through 5.0, in Symantec Storage Foundation products allows remote attackers to cause a denial of service (memory consumption and service crash) via a crafted packet to the service port (8199/tcp) that triggers a request for more memory than available, which causes the service to write to an invalid pointer.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P

Type: Primary

Version: 2.0

Base score: 5.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:N/C:N/I:N/A:P

CPE Matches

Symantec Corporation

>>veritas_volume_replicator>>3.1

cpe:2.3:a:symantec:veritas_volume_replicator:3.1:*:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>3.5

cpe:2.3:a:symantec:veritas_volume_replicator:3.5:*:unix:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.0

cpe:2.3:a:symantec:veritas_volume_replicator:4.0:*:unix:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.1

cpe:2.3:a:symantec:veritas_volume_replicator:4.1:*:unix:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.1

cpe:2.3:a:symantec:veritas_volume_replicator:4.1:*:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.1

cpe:2.3:a:symantec:veritas_volume_replicator:4.1:rp1:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.2

cpe:2.3:a:symantec:veritas_volume_replicator:4.2:*:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.2

cpe:2.3:a:symantec:veritas_volume_replicator:4.2:rp1:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.2

cpe:2.3:a:symantec:veritas_volume_replicator:4.2:rp2:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.3

cpe:2.3:a:symantec:veritas_volume_replicator:4.3:*:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>4.3

cpe:2.3:a:symantec:veritas_volume_replicator:4.3:mp3:windows:*:*:*:*:*

Symantec Corporation

>>veritas_volume_replicator>>5.0

cpe:2.3:a:symantec:veritas_volume_replicator:5.0:*:unix:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-399	Primary	nvd@nist.gov

CWE ID: CWE-399

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://cirt.dk/advisories/cirt-53-advisory.txt	cve@mitre.org	N/A
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=539	cve@mitre.org	Patch Vendor Advisory
http://osvdb.org/36102	cve@mitre.org	N/A
http://secunia.com/advisories/25516	cve@mitre.org	Vendor Advisory
http://www.securityfocus.com/bid/24160	cve@mitre.org	N/A
http://www.securitytracker.com/id?1018184	cve@mitre.org	N/A
http://www.symantec.com/avcenter/security/Content/2007.06.01a.html	cve@mitre.org	Patch
http://www.vupen.com/english/advisories/2007/2036	cve@mitre.org	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/34676	cve@mitre.org	N/A
http://cirt.dk/advisories/cirt-53-advisory.txt	af854a3a-2127-422b-91ae-364da2661108	N/A
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=539	af854a3a-2127-422b-91ae-364da2661108	Patch Vendor Advisory
http://osvdb.org/36102	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/25516	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://www.securityfocus.com/bid/24160	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securitytracker.com/id?1018184	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.symantec.com/avcenter/security/Content/2007.06.01a.html	af854a3a-2127-422b-91ae-364da2661108	Patch
http://www.vupen.com/english/advisories/2007/2036	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/34676	af854a3a-2127-422b-91ae-364da2661108	N/A