Microsoft Windows Failover Clustering File Permissions Security Bypass Vulnerability

2010-10-12T00:00:00
ID SMNTC-43818
Type symantec
Reporter Symantec Security Response
Modified 2010-10-12T00:00:00

Description

Description

Microsoft Windows Failover Clustering is prone to a security-bypass vulnerability. Local attackers can exploit this issue to perform unauthorized actions against the administrative shares on the failover cluster disk.

Technologies Affected

  • Microsoft Windows Server 2008 R2 Itanium
  • Microsoft Windows Server 2008 R2 x64

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Allow only trusted individuals to have user accounts and local access to the resources.

Updates are available. Please see the references for more information.