Denial of Service : HotSync Manager Denial of Service attack

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.10102

Category: Denial of Service

Title: HotSync Manager Denial of Service attack

Summary: It is possible to cause HotSync Manager to crash by; sending a few bytes of garbage into its listening port TCP 14238.

Description: Summary:
It is possible to cause HotSync Manager to crash by
sending a few bytes of garbage into its listening port TCP 14238.

Solution:
Block those ports from outside communication.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2000-0058
BugTraq ID: 920
http://www.securityfocus.com/bid/920
Bugtraq: 20000105 Handspring Visor Network HotSync Security Hole (Google Search)
http://www.security-express.com/archives/bugtraq/2000-01/0085.html

Copyright Copyright (C) 1999 SecuriTeam

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.10102
Category:	Denial of Service
Title:	HotSync Manager Denial of Service attack
Summary:	It is possible to cause HotSync Manager to crash by; sending a few bytes of garbage into its listening port TCP 14238.
Description:	Summary: It is possible to cause HotSync Manager to crash by sending a few bytes of garbage into its listening port TCP 14238. Solution: Block those ports from outside communication. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2000-0058 BugTraq ID: 920 http://www.securityfocus.com/bid/920 Bugtraq: 20000105 Handspring Visor Network HotSync Security Hole (Google Search) http://www.security-express.com/archives/bugtraq/2000-01/0085.html
Copyright	Copyright (C) 1999 SecuriTeam