CVE-2008-0978
Published Feb 25, 2008
Last updated 6 years ago
Overview
- Description
- Double-Take 5.0.0.2865 and earlier, distributed under the HP StorageWorks Storage Mirroring name and other names, allows remote attackers to obtain sensitive information via a packet of type (1) 0x2728, which provides operating system and path information; (2) 0x274e, which lists Ethernet adapters; (3) 0x2726, which provides filesystem information; (4) 0x274f, which specifies the printer driver; or (5) 0x2757, which provides recent log entries.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Vendor comments
- Double-TakeThese findings indicate risk only in a situation where a customer’s network security infrastructure has been breached. Double-Take is committed to continually improving the security of our products, and these findings will be addressed in a future release.
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:double-take_software:double-take:4.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F178F692-773F-4D8A-BA9C-78D448126649"
},
{
"criteria": "cpe:2.3:a:double-take_software:double-take:5.0.0.2865:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "36F54C9F-55AA-4171-80E1-3B7F978B51AF"
}
],
"operator": "OR"
}
]
}
]