Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Veritas Cluster Server for UNIX ha命令本地缓冲区溢出漏洞
Vulnerability Description
Veritas集群服务器是一款存储控制解决方案,可有效的管理节点集群。 Veritas Cluster Server中存在本地缓冲区溢出漏洞。在调用VCSI18N_LANG环境变量相关的多个ha命令时没有执行正确的边界检查,而受影响的代码是以系统管理员权限(Root SUID)运行的,因此恶意的攻击者可以破坏备份/存储功能,或在目标服务器上获得权限提升。
CVSS Information
N/A
Vulnerability Type
N/A