CVE-2005-3566 - Vulnerability Details

Vendors	Products
Symantec Veritas	Cluster Server Sanpoint Control Quickstart Storage Foundation Storage Foundation Cluster File System

Link	Providers
http://marc.info/?l=bugtraq&m=113199516516880&w=2
http://osvdb.org/20673
http://secunia.com/advisories/17502
http://securityreason.com/securityalert/174
http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html
http://securitytracker.com/id?1015169
http://www.securityfocus.com/bid/15349
http://www.vupen.com/english/advisories/2005/2350
https://exchange.xforce.ibmcloud.com/vulnerabilities/22986

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-11-09T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2005-2350", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/2350"}, {"name": "1015169", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1015169"}, {"name": "veritas-ha-bo(22986)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22986"}, {"name": "174", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/174"}, {"name": "20673", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/20673"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html"}, {"name": "17502", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/17502"}, {"name": "20051112 DMA[2005-1112a] - 'Veritas Storage Foundation VCSI18N_LANG buffer overflow'", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=113199516516880&w=2"}, {"name": "15349", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/15349"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-3566", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2005-2350", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/2350"}, {"name": "1015169", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1015169"}, {"name": "veritas-ha-bo(22986)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22986"}, {"name": "174", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/174"}, {"name": "20673", "refsource": "OSVDB", "url": "http://osvdb.org/20673"}, {"name": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html", "refsource": "CONFIRM", "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html"}, {"name": "17502", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/17502"}, {"name": "20051112 DMA[2005-1112a] - 'Veritas Storage Foundation VCSI18N_LANG buffer overflow'", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=113199516516880&w=2"}, {"name": "15349", "refsource": "BID", "url": "http://www.securityfocus.com/bid/15349"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T23:17:23.331Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2005-2350", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2005/2350"}, {"name": "1015169", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1015169"}, {"name": "veritas-ha-bo(22986)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22986"}, {"name": "174", "tags": ["third-party-advisory", "x_refsource_SREASON", "x_transferred"], "url": "http://securityreason.com/securityalert/174"}, {"name": "20673", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/20673"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html"}, {"name": "17502", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/17502"}, {"name": "20051112 DMA[2005-1112a] - 'Veritas Storage Foundation VCSI18N_LANG buffer overflow'", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=113199516516880&w=2"}, {"name": "15349", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/15349"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-3566", "datePublished": "2005-11-16T07:37:00", "dateReserved": "2005-11-16T00:00:00", "dateUpdated": "2024-08-07T23:17:23.331Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2005-11-09T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-07-10T14:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : ADV-2005-2350 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_VUPEN (string)

]

url : http://www.vupen.com/english/advisories/2005/2350 (string)

}

1 : { »

name : 1015169 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://securitytracker.com/id?1015169 (string)

}

2 : { »

name : veritas-ha-bo(22986) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/22986 (string)

}

3 : { »

name : 174 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_SREASON (string)

]

url : http://securityreason.com/securityalert/174 (string)

}

4 : { »

name : 20673 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_OSVDB (string)

]

url : http://osvdb.org/20673 (string)

}

5 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html (string)

}

6 : { »

name : 17502 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_SECUNIA (string)

]

url : http://secunia.com/advisories/17502 (string)

}

7 : { »

name : 20051112 DMA[2005-1112a] - 'Veritas Storage Foundation VCSI18N_LANG buffer overflow' (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=113199516516880&w=2 (string)

}

8 : { »

name : 15349 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

]

url : http://www.securityfocus.com/bid/15349 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2005-3566 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : ADV-2005-2350 (string)

refsource : VUPEN (string)

url : http://www.vupen.com/english/advisories/2005/2350 (string)

}

1 : { »

name : 1015169 (string)

refsource : SECTRACK (string)

url : http://securitytracker.com/id?1015169 (string)

}

2 : { »

name : veritas-ha-bo(22986) (string)

refsource : XF (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/22986 (string)

}

3 : { »

name : 174 (string)

refsource : SREASON (string)

url : http://securityreason.com/securityalert/174 (string)

}

4 : { »

name : 20673 (string)

refsource : OSVDB (string)

url : http://osvdb.org/20673 (string)

}

5 : { »

name : http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html (string)

refsource : CONFIRM (string)

url : http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html (string)

}

6 : { »

name : 17502 (string)

refsource : SECUNIA (string)

url : http://secunia.com/advisories/17502 (string)

}

7 : { »

name : 20051112 DMA[2005-1112a] - 'Veritas Storage Foundation VCSI18N_LANG buffer overflow' (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=113199516516880&w=2 (string)

}

8 : { »

name : 15349 (string)

refsource : BID (string)

url : http://www.securityfocus.com/bid/15349 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-07T23:17:23.331Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : ADV-2005-2350 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_VUPEN (string)

2 : x_transferred (string)

]

url : http://www.vupen.com/english/advisories/2005/2350 (string)

}

1 : { »

name : 1015169 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://securitytracker.com/id?1015169 (string)

}

2 : { »

name : veritas-ha-bo(22986) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/22986 (string)

}

3 : { »

name : 174 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_SREASON (string)

2 : x_transferred (string)

]

url : http://securityreason.com/securityalert/174 (string)

}

4 : { »

name : 20673 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_OSVDB (string)

2 : x_transferred (string)

]

url : http://osvdb.org/20673 (string)

}

5 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html (string)

}

6 : { »

name : 17502 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_SECUNIA (string)

2 : x_transferred (string)

]

url : http://secunia.com/advisories/17502 (string)

}

7 : { »

name : 20051112 DMA[2005-1112a] - 'Veritas Storage Foundation VCSI18N_LANG buffer overflow' (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=113199516516880&w=2 (string)

}

8 : { »

name : 15349 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/bid/15349 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2005-3566 (string)

datePublished : 2005-11-16T07:37:00 (string)

dateReserved : 2005-11-16T00:00:00 (string)

dateUpdated : 2024-08-07T23:17:23.331Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "F804BEB2-6746-4E09-B74F-654DBBE3B48B", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_linux:*:*:*:*:*:*:*", "matchCriteriaId": "0772A28C-68C1-47CF-BDAA-BC0E900A77BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_linux_mp1p1:*:*:*:*:*:*:*", "matchCriteriaId": "4DF2B817-5F85-49E4-BB06-C744EAE20FBE", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_mp1:*:*:*:*:*:*:*", "matchCriteriaId": "E70FBFB8-68DB-47AD-856D-8E893FDDCB6C", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:2.2_mp2:*:*:*:*:*:*:*", "matchCriteriaId": "1025ACEA-8762-4D86-91CC-EA64F01074D3", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5:*:*:*:*:*:*:*", "matchCriteriaId": "01C920F9-9D6B-42DB-9B70-7F14082B5C64", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_aix:*:*:*:*:*:*:*", "matchCriteriaId": "A6CA14BE-2F40-4195-818C-9C6E80B5AD41", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux:*:*:*:*:*:*:*", "matchCriteriaId": "2A2DD961-3C4C-483E-932D-7B19CC3CC1FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux_update_1:*:*:*:*:*:*:*", "matchCriteriaId": "A49FB7E6-CBD3-424E-BBE2-684B5934F84C", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux_update_2:*:*:*:*:*:*:*", "matchCriteriaId": "AB31E8E7-FDD9-4684-A794-6CC5E2B9ABDE", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp1:*:*:*:*:*:*:*", "matchCriteriaId": "270B6EE8-E7F5-467D-9363-304088A9192E", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp1j:*:*:*:*:*:*:*", "matchCriteriaId": "EEAD4F45-25AD-4BF4-AD4B-07B3C8BCEB5F", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp2:*:*:*:*:*:*:*", "matchCriteriaId": "2E9B676F-53FC-4CA9-8FA2-E0274A8CD2A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_p1:*:*:*:*:*:*:*", "matchCriteriaId": "C17C170F-7CE0-4F3C-B6B1-4F0318B18E7B", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris:*:*:*:*:*:*:*", "matchCriteriaId": "42673130-3B5B-412B-B25C-6D62AC7C9B4D", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_beta:*:*:*:*:*:*:*", "matchCriteriaId": "3F04E991-2C3D-4566-B5F1-B370603045E5", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp1:*:*:*:*:*:*:*", "matchCriteriaId": "3B1E0306-DAB2-44E6-9091-F9AF7E3094B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp2:*:*:*:*:*:*:*", "matchCriteriaId": "B2272678-1BDA-4BAA-88BA-9742B8246F3D", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp3:*:*:*:*:*:*:*", "matchCriteriaId": "81EFE6E3-E19B-4CF9-B8B7-DDA31138B9EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_aix:*:*:*:*:*:*:*", "matchCriteriaId": "2DC7F1B0-5952-42C7-80EB-C1F2B3412D92", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_aix_beta:*:*:*:*:*:*:*", "matchCriteriaId": "F762CE91-CE7F-4DD1-BC51-DB7F94EBED2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_linux:*:*:*:*:*:*:*", "matchCriteriaId": "4B6940C1-2810-42BB-9E90-D22905B052EF", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_linux_beta:*:*:*:*:*:*:*", "matchCriteriaId": "C37A3D7F-EE69-49E4-AC98-F20ECAC74805", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris:*:*:*:*:*:*:*", "matchCriteriaId": "15F15C22-CF20-4C19-9B50-84F5EB9093EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris_beta:*:*:*:*:*:*:*", "matchCriteriaId": "C944D168-5A6A-4B3D-A62F-E4B33E72D7C7", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris_mp1:*:*:*:*:*:*:*", "matchCriteriaId": "C4A48F34-B71B-4693-A32E-69767789BC24", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:sanpoint_control_quickstart:3.5_solaris:*:*:*:*:*:*:*", "matchCriteriaId": "BB0B43BB-9412-4A1D-B7A4-897C58165510", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:1.0_aix:*:*:*:*:*:*:*", "matchCriteriaId": "005AAE24-73CC-4919-83F5-E81C8C2F8F99", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:2.2_linux:*:*:*:*:*:*:*", "matchCriteriaId": "4A52C93D-58A7-4F92-8C2E-5D05058AAF2A", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:2.2_vmware_esx:*:*:*:*:*:*:*", "matchCriteriaId": "9C2DA5A9-58C3-4E84-87FA-66E72361FC48", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.0_aix:*:*:*:*:*:*:*", "matchCriteriaId": "899C48A6-EB2F-458C-832E-B216DC8C9F1D", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.4_aix:*:*:*:*:*:*:*", "matchCriteriaId": "034323B5-C618-4289-A9A5-0110AA83351E", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.5_hp-ux:*:*:*:*:*:*:*", "matchCriteriaId": "5FEC93E3-0501-417D-821C-23DF313C7805", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:3.5_solaris:*:*:*:*:*:*:*", "matchCriteriaId": "0E159E08-DF77-4140-8E3F-162CC785CE4A", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:4.0_aix:*:*:*:*:*:*:*", "matchCriteriaId": "A00A4C71-307E-448D-AA5D-B08C1F3FC4DB", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:4.0_linux:*:*:*:*:*:*:*", "matchCriteriaId": "84AAC81F-E1C5-47B4-B63E-3EA2A3297694", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation:4.0_solaris:*:*:*:*:*:*:*", "matchCriteriaId": "2C776029-A6BC-4EC3-BB7A-A3E52E41ADBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_aix:*:*:*:*:*:*:*", "matchCriteriaId": "0D9CE863-1018-4B58-BB93-FFDA16572CBA", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_linux:*:*:*:*:*:*:*", "matchCriteriaId": "2A0604C6-FDE6-4FCD-AF4C-106E6081F868", "vulnerable": true}, {"criteria": "cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_solaris:*:*:*:*:*:*:*", "matchCriteriaId": "4686EC86-36EE-4250-94FD-261CE14E7F22", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew."}], "id": "CVE-2005-3566", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.1, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-11-16T07:42:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=113199516516880&w=2"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/20673"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/17502"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/174"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://securitytracker.com/id?1015169"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/15349"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2005/2350"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22986"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=113199516516880&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/20673"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/17502"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://securityreason.com/securityalert/174"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://securitytracker.com/id?1015169"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/15349"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2005/2350"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/22986"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : F804BEB2-6746-4E09-B74F-654DBBE3B48B (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:2.2_linux:*:*:*:*:*:*:* (string)

matchCriteriaId : 0772A28C-68C1-47CF-BDAA-BC0E900A77BF (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:2.2_linux_mp1p1:*:*:*:*:*:*:* (string)

matchCriteriaId : 4DF2B817-5F85-49E4-BB06-C744EAE20FBE (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:2.2_mp1:*:*:*:*:*:*:* (string)

matchCriteriaId : E70FBFB8-68DB-47AD-856D-8E893FDDCB6C (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:2.2_mp2:*:*:*:*:*:*:* (string)

matchCriteriaId : 1025ACEA-8762-4D86-91CC-EA64F01074D3 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5:*:*:*:*:*:*:* (string)

matchCriteriaId : 01C920F9-9D6B-42DB-9B70-7F14082B5C64 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_aix:*:*:*:*:*:*:* (string)

matchCriteriaId : A6CA14BE-2F40-4195-818C-9C6E80B5AD41 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux:*:*:*:*:*:*:* (string)

matchCriteriaId : 2A2DD961-3C4C-483E-932D-7B19CC3CC1FE (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux_update_1:*:*:*:*:*:*:* (string)

matchCriteriaId : A49FB7E6-CBD3-424E-BBE2-684B5934F84C (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_hp-ux_update_2:*:*:*:*:*:*:* (string)

matchCriteriaId : AB31E8E7-FDD9-4684-A794-6CC5E2B9ABDE (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp1:*:*:*:*:*:*:* (string)

matchCriteriaId : 270B6EE8-E7F5-467D-9363-304088A9192E (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp1j:*:*:*:*:*:*:* (string)

matchCriteriaId : EEAD4F45-25AD-4BF4-AD4B-07B3C8BCEB5F (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_mp2:*:*:*:*:*:*:* (string)

matchCriteriaId : 2E9B676F-53FC-4CA9-8FA2-E0274A8CD2A0 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_p1:*:*:*:*:*:*:* (string)

matchCriteriaId : C17C170F-7CE0-4F3C-B6B1-4F0318B18E7B (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris:*:*:*:*:*:*:* (string)

matchCriteriaId : 42673130-3B5B-412B-B25C-6D62AC7C9B4D (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_beta:*:*:*:*:*:*:* (string)

matchCriteriaId : 3F04E991-2C3D-4566-B5F1-B370603045E5 (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp1:*:*:*:*:*:*:* (string)

matchCriteriaId : 3B1E0306-DAB2-44E6-9091-F9AF7E3094B1 (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp2:*:*:*:*:*:*:* (string)

matchCriteriaId : B2272678-1BDA-4BAA-88BA-9742B8246F3D (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:3.5_solaris_mp3:*:*:*:*:*:*:* (string)

matchCriteriaId : 81EFE6E3-E19B-4CF9-B8B7-DDA31138B9EF (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:4.0_aix:*:*:*:*:*:*:* (string)

matchCriteriaId : 2DC7F1B0-5952-42C7-80EB-C1F2B3412D92 (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:4.0_aix_beta:*:*:*:*:*:*:* (string)

matchCriteriaId : F762CE91-CE7F-4DD1-BC51-DB7F94EBED2E (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:4.0_linux:*:*:*:*:*:*:* (string)

matchCriteriaId : 4B6940C1-2810-42BB-9E90-D22905B052EF (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:4.0_linux_beta:*:*:*:*:*:*:* (string)

matchCriteriaId : C37A3D7F-EE69-49E4-AC98-F20ECAC74805 (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris:*:*:*:*:*:*:* (string)

matchCriteriaId : 15F15C22-CF20-4C19-9B50-84F5EB9093EB (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris_beta:*:*:*:*:*:*:* (string)

matchCriteriaId : C944D168-5A6A-4B3D-A62F-E4B33E72D7C7 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:a:symantec_veritas:cluster_server:4.0_solaris_mp1:*:*:*:*:*:*:* (string)

matchCriteriaId : C4A48F34-B71B-4693-A32E-69767789BC24 (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:a:symantec_veritas:sanpoint_control_quickstart:3.5_solaris:*:*:*:*:*:*:* (string)

matchCriteriaId : BB0B43BB-9412-4A1D-B7A4-897C58165510 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:1.0_aix:*:*:*:*:*:*:* (string)

matchCriteriaId : 005AAE24-73CC-4919-83F5-E81C8C2F8F99 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:2.2_linux:*:*:*:*:*:*:* (string)

matchCriteriaId : 4A52C93D-58A7-4F92-8C2E-5D05058AAF2A (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:2.2_vmware_esx:*:*:*:*:*:*:* (string)

matchCriteriaId : 9C2DA5A9-58C3-4E84-87FA-66E72361FC48 (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:3.0_aix:*:*:*:*:*:*:* (string)

matchCriteriaId : 899C48A6-EB2F-458C-832E-B216DC8C9F1D (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:3.4_aix:*:*:*:*:*:*:* (string)

matchCriteriaId : 034323B5-C618-4289-A9A5-0110AA83351E (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:3.5_hp-ux:*:*:*:*:*:*:* (string)

matchCriteriaId : 5FEC93E3-0501-417D-821C-23DF313C7805 (string)

vulnerable : true (boolean)

}

33 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:3.5_solaris:*:*:*:*:*:*:* (string)

matchCriteriaId : 0E159E08-DF77-4140-8E3F-162CC785CE4A (string)

vulnerable : true (boolean)

}

34 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:4.0_aix:*:*:*:*:*:*:* (string)

matchCriteriaId : A00A4C71-307E-448D-AA5D-B08C1F3FC4DB (string)

vulnerable : true (boolean)

}

35 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:4.0_linux:*:*:*:*:*:*:* (string)

matchCriteriaId : 84AAC81F-E1C5-47B4-B63E-3EA2A3297694 (string)

vulnerable : true (boolean)

}

36 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation:4.0_solaris:*:*:*:*:*:*:* (string)

matchCriteriaId : 2C776029-A6BC-4EC3-BB7A-A3E52E41ADBD (string)

vulnerable : true (boolean)

}

37 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_aix:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D9CE863-1018-4B58-BB93-FFDA16572CBA (string)

vulnerable : true (boolean)

}

38 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_linux:*:*:*:*:*:*:* (string)

matchCriteriaId : 2A0604C6-FDE6-4FCD-AF4C-106E6081F868 (string)

vulnerable : true (boolean)

}

39 : { »

criteria : cpe:2.3:a:symantec_veritas:storage_foundation_cluster_file_system:4.0_solaris:*:*:*:*:*:*:* (string)

matchCriteriaId : 4686EC86-36EE-4250-94FD-261CE14E7F22 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Buffer overflow in various ha commands of VERITAS Cluster Server for UNIX before 4.0MP2 allows local users to execute arbitrary code via a long VCSI18N_LANG environment variable to (1) haagent, (2) haalert, (3) haattr, (4) hacli, (5) hacli_runcmd, (6) haclus, (7) haconf, (8) hadebug, (9) hagrp, (10) hahb, (11) halog, (12) hareg, (13) hares, (14) hastatus, (15) hasys, (16) hatype, (17) hauser, and (18) tststew. (string)

}

]

id : CVE-2005-3566 (string)

lastModified : 2025-04-03T01:03:51.193 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : LOCAL (string)

authentication : SINGLE (string)

availabilityImpact : PARTIAL (string)

baseScore : 4.3 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:L/AC:L/Au:S/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 3.1 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : true (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2005-11-16T07:42:00.000 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

url : http://marc.info/?l=bugtraq&m=113199516516880&w=2 (string)

}

1 : { »

source : cve@mitre.org (string)

url : http://osvdb.org/20673 (string)

}

2 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://secunia.com/advisories/17502 (string)

}

3 : { »

source : cve@mitre.org (string)

url : http://securityreason.com/securityalert/174 (string)

}

4 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html (string)

}

5 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

]

url : http://securitytracker.com/id?1015169 (string)

}

6 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Exploit (string)

]

url : http://www.securityfocus.com/bid/15349 (string)

}

7 : { »

source : cve@mitre.org (string)

url : http://www.vupen.com/english/advisories/2005/2350 (string)

}

8 : { »

source : cve@mitre.org (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/22986 (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://marc.info/?l=bugtraq&m=113199516516880&w=2 (string)

}

10 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://osvdb.org/20673 (string)

}

11 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://secunia.com/advisories/17502 (string)

}

12 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://securityreason.com/securityalert/174 (string)

}

13 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://securityresponse.symantec.com/avcenter/security/Content/2005.11.08a.html (string)

}

14 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

]

url : http://securitytracker.com/id?1015169 (string)

}

15 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Exploit (string)

]

url : http://www.securityfocus.com/bid/15349 (string)

}

16 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.vupen.com/english/advisories/2005/2350 (string)

}

17 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/22986 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : NVD-CWE-Other (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object