HIGH🇵🇱 Wersja polska

CVE-2012-0406

CVSS 7.8v2.0pub. 2012-04-20upd. 2026-04-29

The DPA_Utilities.cProcessAuthenticationData function in EMC Data Protection Advisor (DPA) 5.5 through 5.8 SP1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an AUTHENTICATECONNECTION command that (1) lacks a password field or (2) has an empty password.

CVSS Vector
AV:N/AC:L/Au:N/C:N/I:N/A:C
  • Emc Data Protection Advisor

    APP
    Emc
    5.55.65.75.8
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2017-8013CRITICAL9.8ten sam produkt

EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts wi...

CVE-2018-1206HIGH7.8ten sam produkt

Dell EMC Data Protection Advisor versions prior to 6.3 Patch 159 and Dell EMC Data Protection Advisor versions...

CVE-2017-10955HIGH8.8ten sam produkt

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Data P...

CVE-2017-8002HIGH8.8ten sam produkt

EMC Data Protection Advisor prior to 6.4 contains multiple blind SQL injection vulnerabilities. A remote authe...

CVE-2017-8003MEDIUM4.9ten sam produkt

EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high ...