Vulnerability CVE-2003-1563


Published: 2003-12-31   Modified: 2012-02-12

Description:
Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real Application Clusters (OPS/RAC) allows local users to cause a denial of service (cluster node panic or abort) by launching a daemon listening on a TCP port that would otherwise be used by the Distributed Lock Manager (DLM), possibly involving this daemon responding in a manner that spoofs a cluster reconfiguration.

Type:

CWE-Other

CVSS2 => (AV:L/AC:H/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4/10
6.9/10
1.9/10
Exploit range
Attack complexity
Authentication
Local
High
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
SUN -> Cluster 

 References:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101393-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-200810-1
http://www.auscert.org.au/render.html?it=3672
http://www.securityfocus.com/bid/9137

Copyright 2024, cxsecurity.com

 

Back to Top