Compaq TruCluster Port Scan Denial of Service Vulnerability

TruCluster is a server high-availability software package distributed and maintained by Compaq.

A problem has been discovered that could allow a denial of service to users of the TruCluster package. The problem is in the handling of portscans by the software. When a system in a cluster is portscanned by a system without a DNS PTR record, cluster split-brain occurs.

This makes it possible for a user to corrupt or destroy data, deny service, and perhaps even damage hardware.


Privacy Statement
Copyright 2010, SecurityFocus