The DPA_Utilities.cProcessAuthenticationData function in EMC Data Protection Advisor (DPA) 5.5 up to and including 5.8 SP1 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an AUTHENTICATECONNECTION command that (1) lacks a password field or (2) has an empty password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
emc data protection advisor 5.6 |
||
emc data protection advisor 5.7 |
||
emc data protection advisor 5.5 |
||
emc data protection advisor 5.8 |