Vulnerability Details : CVE-2008-6219
nsrexecd.exe in multiple EMC Networker products including EMC NetWorker Server, Storage Node, and Client 7.3.x and 7.4, 7.4.1, 7.4.2, Client and Storage Node for Open VMS 7.3.2 ECO6 and earlier, Module for Microsoft Exchange 5.1 and earlier, Module for Microsoft Applications 2.0 and earlier, Module for Meditech 2.0 and earlier, and PowerSnap 2.4 SP1 and earlier does not properly control the allocation of memory, which allows remote attackers to cause a denial of service (memory exhaustion) via multiple crafted RPC requests.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2008-6219
Probability of exploitation activity in the next 30 days: 3.76%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 91 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2008-6219
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
CWE ids for CVE-2008-6219
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-6219
-
http://www.securityfocus.com/archive/1/497645/100/0/threaded
-
http://www.securityfocus.com/archive/1/497666/100/0/threaded
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/46035
-
http://www.fortiguardcenter.com/advisory/FGA-2008-23.html
-
http://www.securitytracker.com/id?1021095
-
http://www.vupen.com/english/advisories/2008/2894
-
http://www.securityfocus.com/bid/31866
Products affected by CVE-2008-6219
- cpe:2.3:a:emc:networker_server:*:sp3:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_server:7.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_server:7.4:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_server:7.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_storage_node:*:eco6:open_vms:*:*:*:*:*
- cpe:2.3:a:emc:networker_storage_node:*:sp3:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_storage_node:7.4:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_storage_node:7.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_storage_node:7.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_client:*:eco6:open_vms:*:*:*:*:*
- cpe:2.3:a:emc:networker_client:*:sp3:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_client:7.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_client:7.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_client:7.4:*:*:*:*:*:*:*
- cpe:2.3:a:emc:networker_module:*:-:microsoft_applications:*:*:*:*:*
- cpe:2.3:a:emc:networker_module:*:-:meditech:*:*:*:*:*
- cpe:2.3:a:emc:networker_module:*:-:microsoft_exchange:*:*:*:*:*
- cpe:2.3:a:emc:networker_powersnap:*:sp1:*:*:*:*:*:*