[UNIX] IBM High Availability Cluster Multi-Processing (HACMP) Vulnerable to a DoS

From: support@securiteam.com
Date: 10/03/01 

From: support@securiteam.com
To: list@securiteam.com
Subject: [UNIX] IBM High Availability Cluster Multi-Processing (HACMP) Vulnerable to a DoS
Message-Id: <20011003002643.7BB5F138C2@mail.der-keiler.de>
Date: Wed,  3 Oct 2001 02:26:43 +0200 (CEST)

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion

When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -

  IBM High Availability Cluster Multi-Processing (HACMP) Vulnerable to a DoS
------------------------------------------------------------------------

SUMMARY

 <http://www.rs6000.ibm.com/software/Apps/hacmp/> High Availability
Cluster Multiprocessing (HACMP) is a control application that can link up
to 32 RS/6000 servers or SP nodes when using the Enhanced Scalability
feature into highly- available clusters. A security vulnerability in the
product has been found to enable remote attackers to cause the program to
crash.

DETAILS

Vulnerable systems:
IBM HACMP version 4.3
IBM HACMP version 4.4

IBM's HACMP clustering software has been found to be vulnerable to an
attacker where by conducting a TCP CONNECT port scan on it, the product
can be made to crash.

Workaround:
Since no solution exists up until now, it is recommended that the product
be shielded from un-trusted networks via a Firewall.

ADDITIONAL INFORMATION

The information has been provided by <mailto:rtfm@eircom.net> Eoin D.
Fleming.

========================================

This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

====================
====================

DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

Relevant Pages