7647 matches found
Microsoft Security Bulletin MS10-086 - Moderate Vulnerability in Windows Shared Cluster Disks Could Allow Tampering (2294255)
Microsoft Security Bulletin MS10-086 - Moderate Vulnerability in Windows Shared Cluster Disks Could Allow Tampering 2294255 Published: October 12, 2010 Version: 1.0 General Information Executive Summary This security update resolves a privately reported vulnerability in Windows Server 2008 R2 whe...
Microsoft Windows 2008 Shared Cluster Disks weak permissions
Everyone:Full Control permissions is granted on new disks by default...
MS10-086: Vulnerability in Windows Shared Cluster Disks Could Allow Tampering (2294255)
The remote Windows 2008 R2 host has a data tampering vulnerability. When the host is used as a shared failover cluster, the Failover Cluster Manager uses insecure default permissions when adding disks to a cluster. This allows unauthorized read, write, and delete access to the administrative shar...
Microsoft Windows OpenType Font (OTF) Format Driver CVE-2010-2741 Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Attackers may exploit this issue to execute arbitrary code with kernel-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers. Failed exploit attempts...
Debian Security Advisory DSA 2095-1 (lvm2)
The remote host is missing an update to lvm2 announced via advisory DSA 2095-1. OpenVAS Vulnerability Test $Id: deb20951.nasl 6614 2017-07-07 12:09:12Z cfischer $ Description: Auto-generated from advisory DSA 2095-1 lvm2 Authors: Thomas Reinke Copyright: Copyright c 2010 E-Soft Inc...
Debian: Security Advisory (DSA-2095-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-1001-1: LVM2 vulnerability
The cluster logical volume manager daemon clvmd in LVM2 did not correctly validate credentials. A local user could use this flaw to manipulate logical volumes without root privileges and cause a denial of service in the cluster...
Fedora 12 : lvm2-2.02.72-4.fc12 (2010-12250)
This update addresses a security problem when using the clustered LVM daemon clvmd from the package lvm2-cluster on systems where you have non-root users. The lvm2 package on its own is not vulnerable to this problem but if you are using lvm2-cluster you must update both together. Further details...
Denial of Service (DoS) Vulnerability in JP1/Desktop Navigation Built-in Database
Overview When JP1/Desktop Navigation used in a cluster environment receives unexpected data, the built-in database process and unit abend, which may cause the management server service to fall into a denial of service DoS condition. Impact A remote attacker could cause a denial of service DoS...
Fedora 13 : lvm2-2.02.73-2.fc13 / udisks-1.0.1-4.fc13 (2010-13708)
This update addresses a security problem when using the clustered LVM daemon clvmd from the package lvm2-cluster on systems where you have non-root users. The lvm2 package on its own is not vulnerable to this problem but if you are using lvm2-cluster you must update both together. Further details...
DEBIAN-CVE-2010-2526
The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...
Design/Logic Flaw
The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...
CVE-2010-2526
CVE-2010-2526 affects the cluster logical volume manager daemon (clvmd) in LVM2-cluster (LVM2) before 2.02.72 . The issue arises because clvmd does not verify credentials of clients over its control socket, enabling local users to issue crafted commands that can cause the daemon to exit, or to ac...
CVE-2010-2526
The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...
CentOS 5 : lvm2-cluster (CESA-2010:0567)
An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
lvm2 security update
CentOS Errata and Security Advisory CESA-2010:0567 An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS...
lvm2-cluster: insecurity when communicating between lvm2 and clvmd
The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...
Moderate: Red Hat Security Advisory: lvm2-cluster security update
An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Global File System for Red Hat Enterprise Linux 4. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which...
Moderate: Red Hat Security Advisory: lvm2-cluster security update
An updated lvm2-cluster package that fixes one security issue is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...
lvm2-cluster: insecurity when communicating between lvm2 and clvmd
The cluster logical volume manager daemon clvmd in lvm2-cluster in LVM2 before 2.02.72, as used in Red Hat Global File System GFS and other products, does not verify client credentials upon a socket connection, which allows local users to cause a denial of service daemon exit or logical-volume...