VERITAS Cluster Server (VCS) on Solaris contains a flaw that may allow a local denial of service. The '-L' option in lltstat command was undocumented and intended to be used with a new feature in a future release, but was inadvertently left enabled in the released version. This flaw allows a local attacker to cause a system panic by issusing the lltstat command with '-L' option, and will result in loss of availability.
Currently, there are no known workarounds or upgrades to correct this issue. However, Veritas has released a patch to address this vulnerability.