CVE-2007-4346

CWE-3993 documents3 sources
Severity
5.0MEDIUM
EPSS
3.7%
top 12.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Symantec Backupexec System Recovery
Timeline
PublishedNov 29
Latest updateMay 1

Description

The Job Engine (bengine.exe) service in Symantec Backup Exec for Windows Servers (BEWS) 11d build 11.0.7170 and 11.0.6.6235 allows remote attackers to cause a denial of service (NULL dereference and service crash) via a crafted packet to port 5633/tcp.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDsymantec/backupexec_system_recovery11.0.6235, 11.0.7170+1

Patches

Patch: secunia.comPatch: secunia.comPatch: securityresponse.symantec.com

🔴Vulnerability Details

2
GHSA
GHSA-9vff-p4vx-rw52: The Job Engine (bengine2022-05-01
CVEList
CVE-2007-4346: The Job Engine (bengine2007-11-29
CVE-2007-4346 (MEDIUM CVSS 5) | The Job Engine (bengine.exe) servic | cvebase.io