Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

redhat cman vulnerabilities and exploits

(subscribe to this query)
695
VMScore
CVE-2008-4192
The pserver_shutdown function in fence_egenera in cman 2.20080629 and 2.20080801 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/eglog temporary file.
Redhat Cman 2.20080629Redhat Cman 2.20080801
694
VMScore
CVE-2008-6560
Buffer overflow in CMAN - The Cluster Manager prior to 2.03.09-1 on Fedora 9 and Red Hat Enterprise Linux (RHEL) 5 allows malicious users to cause a denial of service (CPU consumption and memory corruption) via a cluster.conf file with many lines. NOTE: it is not clear whether th...
Redhat CmanRedhat Cman 2.03.03-1Redhat Cman 2.03.04-1Redhat Cman 2.03.05-1Redhat Cman 2.03.07-1
641
VMScore
CVE-2008-4580
fence_manual, as used in fence 2.02.00-r1 and possibly cman, allows local users to modify arbitrary files via a symlink attack on the fence_manual.fifo temporary file.
Gentoo Cman 2.02.00Gentoo Fence 2.02.00
614
VMScore
CVE-2008-6552
Red Hat Cluster Project 2.x allows local users to modify or overwrite arbitrary files via symlink attacks on files in /tmp, involving unspecified components in Resource Group Manager (aka rgmanager) prior to 2.03.09-1, gfs2-utils prior to 2.03.09-1, and CMAN - The Cluster Manager...
Redhat Cluster Project 2.01.00Redhat Cluster Project 2.02.00Redhat Cluster Project 2.03.08Redhat Cluster Project 2.03.09Redhat Cluster Project 2.99.04Redhat Cluster Project 2.99.05Redhat Cluster Project 2.99.06Redhat Cluster Project 2.99.13Redhat Cluster Project 2.03.03Redhat Cluster Project 2.03.04Redhat Cluster Project 2.99.00Redhat Cluster Project 2.99.01Redhat Cluster Project 2.99.09Redhat Cluster Project 2.99.10Redhat Cluster Project 2.00.00Redhat Cluster Project 2.03.05Redhat Cluster Project 2.03.7Redhat Cluster Project 2.99.02Redhat Cluster Project 2.99.03Redhat Cluster Project 2.99.11Redhat Cluster Project 2.99.12Redhat Cluster Project 2.03.00
445
VMScore
CVE-2007-3373
daemon.c in cman (redhat-cluster-suite) prior to 20070622 does not clear a buffer for reading requests, which might allow local users to obtain sensitive information from previous requests.
Redhat Cluster Suite
409
VMScore
CVE-2007-3374
Buffer overflow in cluster/cman/daemon/daemon.c in cman (redhat-cluster-suite) prior to 20070622 allows local users to cause a denial of service (crash) and possibly execute arbitrary code via long client messages.
Redhat Cluster Suite
169
VMScore
CVE-2008-4579
The (1) fence_apc and (2) fence_apc_snmp programs, as used in (a) fence 2.02.00-r1 and possibly (b) cman, when running in verbose mode, allows local users to append to arbitrary files via a symlink attack on the apclog temporary file.
Gentoo Cman 2.02.00Gentoo Fence 2.02.00
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scriptingCVE-2024-5158XML external entityCVE-2024-4262CVE-2024-2036CVE-2024-4985CVE-2024-21791remote attackersCVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook