Info

Disclosure

Oct 15, 2004

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Veritas Cluster Server contains an unspecified error that may allow an attacker to gain remote privilege escation. No further details have been provided.

Classification

Location: Remote/Network Access Required
Attack Type: Unknown
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to version 4.0 MP1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Veritas	Cluster Server	2.2 MP2
		3.5 MP1
		3.5 Update 2
		4.0
		3.5 MP3

References

Security Tracker: 1011693
Bugtraq ID: 11421
Secunia Advisory ID: 12833
ISS X-Force ID: 17719
CVE ID: 2004-2205 (see also: NVD)
Vendor Specific News/Changelog Entry: http://seer.support.veritas.com/docs/271040.htm
Vendor URL: http://www.veritas.com/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218