cbcvebase.
CVE-2012-0406
published 2012-04-20

CVE-2012-0406: The DPA_Utilities.cProcessAuthenticationData function in EMC Data Protection Advisor (DPA) 5.5 through 5.8 SP1 allows remote attackers to cause a denial of…

PriorityP344high7.8CVSS 2.0
AVNACLAuNCNINAC
EXPLOIT
EPSS
8.65%
94.4th percentile
The DPA_Utilities.cProcessAuthenticationData function in EMC Data Protection Advisor (DPA) 5.5 through 5.8 SP1 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an AUTHENTICATECONNECTION command that (1) lacks a password field or (2) has an empty password.

Affected

4 ranges
VendorProductVersion rangeFixed in
emcdata_protection_advisor
emcdata_protection_advisor
emcdata_protection_advisor
emcdata_protection_advisor
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.