CVE-2012-3252

Vulnerability

HP Serviceguard versions A.11.19 and A.11.20 running on RedHat Enterprise Linux 5.0, 6.0, and SUSE Linux Enterprise Server 10 and 11 contain an unspecified remote denial of service vulnerability. The affected package is HP SG/LX A.11.19.05 (for RHEL5 32-bit and 64-bit). The exact nature of the flaw and the required configuration for exploitation are not disclosed in the available references [1].

Exploitation

An attacker with network access to an affected HP Serviceguard node can remotely exploit this vulnerability without authentication. The specific vectors are unknown, but the CVSS vector (AV:N/AC:L/Au:N/C:N/I:N/A:C) indicates low attack complexity and no authentication requirement [1]. The available references do not describe a concrete sequence of steps.

Impact

Successful exploitation results in a Denial of Service (DoS) condition, affecting the availability of the service. The CVSS base score of 7.8 reflects a high impact on availability, with no impact on confidentiality or integrity [1].

Mitigation

HP has released patches to resolve this vulnerability. The fix is available by contacting HP Support. Patch IDs: SGLX_00330 (for RedHat 5.0 32-bit with HP SG/LX A.11.19.05) and SGLX_00331 (for RedHat 5.0 64-bit with HP SG/LX A.11.19.05). Subsequent versions of these patches also contain the fix [1]. No workaround is documented.