CVE-2002-0711
CVSS5.0
发布时间 :2002-11-12 00:00:00
修订时间 :2016-10-17 22:21:41
NMCOS    

[原文]Unknown vulnerability in Cluster Interconnect for HP TruCluster Server 5.0A, 5.1, and 5.1A may allow local and remote attackers to cause a denial of service.


[CNNVD]HP TruCluster Server集群互联拒绝服务攻击漏洞(CNNVD-200211-030)

        
        HP TruCluster Server是一款使用在HP Tru操作系统上的集群服务程序,提供高可靠的节点集群解决方案。
        HP TruCluster Server存在安全漏洞,远程和本地攻击者可以利用这个漏洞进行拒绝服务攻击。
        利用这个未明漏洞,本地和远程攻击者可以对正常服务进行拒绝服务攻击,停止对正常请求的响应。
        目前没有详细的漏洞细节描述。
        <*链接:*>

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/h:hp:trucluster_server:5.1HP TruCluster Server 5.1
cpe:/h:hp:trucluster_server:5.0aHP TruCluster Server 5.0A
cpe:/h:hp:trucluster_server:5.1aHP TruCluster Server 5.1A

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0711
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2002-0711
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200211-030
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=bugtraq&m=103651974926272&w=2
(UNKNOWN)  BUGTRAQ  20021105 RE: [security bulletin] SSRT2265 HP TruCluster Server Interconnect
http://www.iss.net/security_center/static/10551.php
(UNKNOWN)  XF  hp-trucluster-interconnect-dos(10551)
http://www.securityfocus.com/advisories/4633
(UNKNOWN)  COMPAQ  SSRT2265
http://www.securityfocus.com/bid/6102
(UNKNOWN)  BID  6102

- 漏洞信息

HP TruCluster Server集群互联拒绝服务攻击漏洞
中危 未知
2002-11-12 00:00:00 2005-10-20 00:00:00
远程※本地  
        
        HP TruCluster Server是一款使用在HP Tru操作系统上的集群服务程序,提供高可靠的节点集群解决方案。
        HP TruCluster Server存在安全漏洞,远程和本地攻击者可以利用这个漏洞进行拒绝服务攻击。
        利用这个未明漏洞,本地和远程攻击者可以对正常服务进行拒绝服务攻击,停止对正常请求的响应。
        目前没有详细的漏洞细节描述。
        <*链接:*>

- 公告与补丁

        厂商补丁:
        Compaq
        ------
        Compaq已经为此发布了一个安全公告(SSRT2265)以及相应补丁:
        SSRT2265:HP TruCluster Server Interconnect Potential Security Vulnerability
        链接:
        补丁下载:
        HP TruCluster Server 5.0 A:
        HP Hotfix tcv50ab17-c0005202-15352-es-20020905.tar
        
        http://ftp.support.compaq.com/patches/public/unix/v5.0a/tcv50ab17-c0005202-15352-es-20020905.tar

        HP TruCluster Server 5.1 A:
        HP Hotfix tcv51ab3-c0008601-15346-es-20020905.tar
        
        http://ftp.support.compaq.com/patches/public/unix/v5.1a/tcv51ab3-c0008601-15346-es-20020905.tar

        HP TruCluster Server 5.1:
        HP Hotfix tcv51b19-c0030403-15347-es-20020905.tar
        
        http://ftp.support.compaq.com/patches/public/unix/v5.1/tcv51b19-c0030403-15347-es-20020905.tar

- 漏洞信息

11366
HP TruCluster Server Cluster Interconnect Unspecified DoS
Denial of Service
Loss of Availability

- 漏洞描述

Unknown or Incomplete

- 时间线

2002-11-05 Unknow
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

HP TruCluster Server Cluster Interconnect Denial of Service Vulnerability
Unknown 6102
Yes Yes
2002-11-04 12:00:00 2009-07-11 06:06:00
Vulnerability announced in an HP advisory.

- 受影响的程序版本

HP TruCluster Server 5.1 A
HP TruCluster Server 5.1
HP TruCluster Server 5.0 A

- 漏洞讨论

It has been reported that the Cluster Interconnect software package, available for HP TruCluster Servers, may allow a local or remote attacker to cause a denial of service.

Exploitation of this issue may prevent the service from responding to legitimate requests for service.

Precise technical details regarding this vulnerability are not yet available. This BID will be updated as more information regarding this issue becomes available.

- 漏洞利用

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com &lt;mailto:vuldb@securityfocus.com&gt;.

- 解决方案

HP has released fixes addressing the issue.

HP has released new fixes for TruCluster Server 5.1A.


HP TruCluster Server 5.0 A

HP TruCluster Server 5.1

HP TruCluster Server 5.1 A

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站