RSS   Vulnerabilities for 'LSF'   RSS

2004-11-23
 
CVE-2004-0318

 

 
Load Sharing Facility (LSF) 4.x, 5.x, and 6.x uses the LSF_EAUTH_UID environment variable, if it exists, instead of the real UID of the user, which could allow remote attackers within the local cluster to gain privileges.

 
 
CVE-2004-0317

 

 
Buffer overflow in eauth in Load Sharing Facility 4.x, 5.x, and 6.x allows local users or remote attackers within the LSF cluster to cause a denial of service (segmentation fault) and possibly execute arbitrary code via a long LSF_From_PC parameter.

 

 >>> Vendor: Platform 2 Products
Lsadmin
LSF


Copyright 2019, cxsecurity.com

 

Back to Top