CVE-2005-3566

Published Nov 16, 2005
Last updated a day ago
CVSS info 4.3
Overview

Description: Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew.
Source: cve@mitre.org
NVD status: Deferred
Risk scores

CVSS 2.0

Type: Primary
Base score: 4.3
Impact score: 6.4
Exploitability score: 3.1
Vector string: AV:L/AC:L/Au:S/C:P/I:P/A:P
Weaknesses

nvd@nist.gov: NVD-CWE-Other
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F804BEB2-6746-4E09-B74F-654DBBE3B48B"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_linux:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0772A28C-68C1-47CF-BDAA-BC0E900A77BF"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_linux_mp1p1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4DF2B817-5F85-49E4-BB06-C744EAE20FBE"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_mp1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E70FBFB8-68DB-47AD-856D-8E893FDDCB6C"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_mp2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1025ACEA-8762-4D86-91CC-EA64F01074D3"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "01C920F9-9D6B-42DB-9B70-7F14082B5C64"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_aix:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6CA14BE-2F40-4195-818C-9C6E80B5AD41"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A2DD961-3C4C-483E-932D-7B19CC3CC1FE"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux_update_1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A49FB7E6-CBD3-424E-BBE2-684B5934F84C"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux_update_2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AB31E8E7-FDD9-4684-A794-6CC5E2B9ABDE"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "270B6EE8-E7F5-467D-9363-304088A9192E"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp1j:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EEAD4F45-25AD-4BF4-AD4B-07B3C8BCEB5F"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E9B676F-53FC-4CA9-8FA2-E0274A8CD2A0"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_p1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C17C170F-7CE0-4F3C-B6B1-4F0318B18E7B"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42673130-3B5B-412B-B25C-6D62AC7C9B4D"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F04E991-2C3D-4566-B5F1-B370603045E5"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B1E0306-DAB2-44E6-9091-F9AF7E3094B1"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B2272678-1BDA-4BAA-88BA-9742B8246F3D"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81EFE6E3-E19B-4CF9-B8B7-DDA31138B9EF"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_aix:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2DC7F1B0-5952-42C7-80EB-C1F2B3412D92"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_aix_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F762CE91-CE7F-4DD1-BC51-DB7F94EBED2E"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_linux:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B6940C1-2810-42BB-9E90-D22905B052EF"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_linux_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C37A3D7F-EE69-49E4-AC98-F20ECAC74805"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15F15C22-CF20-4C19-9B50-84F5EB9093EB"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris_beta:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C944D168-5A6A-4B3D-A62F-E4B33E72D7C7"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris_mp1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C4A48F34-B71B-4693-A32E-69767789BC24"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:sanpoint_control_quickstart:3.5_solaris:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB0B43BB-9412-4A1D-B7A4-897C58165510"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:1.0_aix:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "005AAE24-73CC-4919-83F5-E81C8C2F8F99"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:2.2_linux:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A52C93D-58A7-4F92-8C2E-5D05058AAF2A"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:2.2_vmware_esx:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C2DA5A9-58C3-4E84-87FA-66E72361FC48"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.0_aix:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "899C48A6-EB2F-458C-832E-B216DC8C9F1D"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.4_aix:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "034323B5-C618-4289-A9A5-0110AA83351E"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.5_hp-ux:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FEC93E3-0501-417D-821C-23DF313C7805"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.5_solaris:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0E159E08-DF77-4140-8E3F-162CC785CE4A"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:4.0_aix:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A00A4C71-307E-448D-AA5D-B08C1F3FC4DB"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:4.0_linux:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84AAC81F-E1C5-47B4-B63E-3EA2A3297694"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:4.0_solaris:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2C776029-A6BC-4EC3-BB7A-A3E52E41ADBD"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_aix:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D9CE863-1018-4B58-BB93-FFDA16572CBA"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_linux:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A0604C6-FDE6-4FCD-AF4C-106E6081F868"
          },
          {
            "criteria": "cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_solaris:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4686EC86-36EE-4250-94FD-261CE14E7F22"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
