Sun Cluster 2.2 through 3.2 for Oracle Parallel Server / Real Application Clusters (OPS/RAC) allows local users to cause a denial of service (cluster node panic or abort) by launching a daemon listening on a TCP port that would otherwise be used by the Distributed Lock Manager (DLM), possibly involving this daemon responding in a manner that spoofs a cluster reconfiguration.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Solaris | Sun | 2.6 (including) | 2.6 (including) |
| Solaris | Sun | 7 (including) | 7 (including) |
| Sunos | Sun | 5.8 (including) | 5.8 (including) |
References
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101393-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-200810-1
- http://www.auscert.org.au/render.html?it=3672
- http://www.auscert.org.au/render.html?it=3672
- http://www.securityfocus.com/bid/9137
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-101393-1
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-200810-1
- http://www.auscert.org.au/render.html?it=3672
- http://www.auscert.org.au/render.html?it=3672
- http://www.securityfocus.com/bid/9137