Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0978

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-0978
Last Modified 07 Mar 2011 10:05:44
Published 25 Feb 2008 06:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0978

Summary

Double-Take 5.0.0.2865 and earlier, distributed under the HP StorageWorks Storage Mirroring name and other names, allows remote attackers to obtain sensitive information via a packet of type (1) 0x2728, which provides operating system and path information; (2) 0x274e, which lists Ethernet adapters; (3) 0x2726, which provides filesystem information; (4) 0x274f, which specifies the printer driver; or (5) 0x2757, which provides recent log entries.

Vulnerable Systems

Application

  • Double-take Software Double-take 4.5

  • Double-take Software Double-take 5.0.0.2865


References

VUPEN - ADV-2008-0666

BID - 27951

BUGTRAQ - 20080222 Multiple vulnerabilities in Double-Take 5.0.0.2865

MISC - http://aluigi.org/poc/doubletakedown.zip

SREASON - 3698

SECUNIA - 29075

MISC - http://aluigi.altervista.org/adv/doubletakedown-adv.txt


Last Updated: 27 May 2016 10:46:58