CVE-2007-1593

high

Description

The administrative service in Symantec Veritas Volume Replicator (VVR) for Windows 3.1 through 4.3, and VVR for Unix 3.5 through 5.0, in Symantec Storage Foundation products allows remote attackers to cause a denial of service (memory consumption and service crash) via a crafted packet to the service port (8199/tcp) that triggers a request for more memory than available, which causes the service to write to an invalid pointer.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/34676

http://www.vupen.com/english/advisories/2007/2036

http://www.symantec.com/avcenter/security/Content/2007.06.01a.html

http://www.securitytracker.com/id?1018184

http://www.securityfocus.com/bid/24160

http://secunia.com/advisories/25516

http://osvdb.org/36102

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=539

http://cirt.dk/advisories/cirt-53-advisory.txt

Details

Source: Mitre, NVD

Published: 2007-06-04

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High

EPSS

EPSS: 0.03731