medium
5
CWE
399
Advisory Published
CVE Published
Updated

CVE-2005-3659

First published: Sat Dec 31 2005(Updated: )

nsrd.exe in EMC Legato NetWorker 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, and other products such as Sun Solstice Backup (SBU) 6.0 and 6.1 and StorEdge Enterprise Backup Software (EBS) 7.1 through 7.2L, allows remote attackers to cause a denial of service (nsrd service crash) via a malformed RPC request to RPC program number 390109, which triggers a null dereference.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
NetWorker=7.2
NetWorker=7.2_build172
NetWorker=7.2.1

Remedy

ftp://ftp.legato.com/pub/NetWorker/Updates/LGTpa83990/README.TXT

Remedy

http://secunia.com/advisories/18495

Remedy

http://secunia.com/advisories/18615

Remedy

http://securitytracker.com/id?1015500

Remedy

http://securitytracker.com/id?1015545

Remedy

http://www.idefense.com/intelligence/vulnerabilities/display.php?id=375

Remedy

http://www.legato.com/support/websupport/product_alerts/011606_NW.htm

Remedy

http://www.securityfocus.com/bid/16275

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2005-3659?

    The severity of CVE-2005-3659 is considered medium due to the potential for remote denial of service.

  • How do I fix CVE-2005-3659?

    To fix CVE-2005-3659, upgrade EMC Legato NetWorker to versions 7.1.4 or 7.2.1.Build.314 or higher.

  • Which products are affected by CVE-2005-3659?

    Affected products include EMC Legato NetWorker versions 7.1.x before 7.1.4 and 7.2.x before 7.2.1.Build.314, Sun Solstice Backup 6.0 and 6.1, and StorEdge Enterprise Backup Software 7.1 through 7.2L.

  • What type of vulnerability is CVE-2005-3659?

    CVE-2005-3659 is a denial of service vulnerability that allows remote attackers to crash the nsrd service.

  • Is CVE-2005-3659 being actively exploited?

    There is no current information indicating that CVE-2005-3659 is actively being exploited, but it poses a risk to the affected systems.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203