CERT/CC Vulnerability Note VU#102345

Overview

A denial-of-service vulnerability in AIX may allow a remote attacker to consume 100% of the CPU.

Description

AIX is a UNIX operating system distributed by IBM. A vulnerability in AIX 4.3.3 may allow a remote attacker to cause a denial of service. For more information, please see IBM APAR IY31641.

Impact

A remote attacker may be able to consume 100% of the CPU, resulting in a denial of service.

Solution

Apply a patch.

Vendor Information

102345

Filter by status:

Filter by content: Additional information available

Sort by:

Expand all

IBM Affected

CVSS Metrics

Group	Score	Vector
Base
Temporal
Environmental

References

http://www-1.ibm.com/servers/aix/
http://www-1.ibm.com/servers/aix/overview/index.html
http://techsupport.services.ibm.com/support/rs6000.support/fixsearch?fixdb=aix4&srchtype=apar&query=IY31641
http://www-1.ibm.com/support/docview.wss?rs=0&q=IY31641&uid=isg1IY31641&loc=en_US&cs=utf-8&cc=us&lang=en

Acknowledgements

This vulnerability was discovered by Mauro Flores and Guillermo Freire .

This document was written by Ian A Finlay.

Other Information

CVE IDs:	CVE-2002-1201
Severity Metric:	9.00
Date Public:	2002-10-09
Date First Published:	2003-06-12
Date Last Updated:	2003-06-12 13:25 UTC
Document Revision:	8

Software Engineering Institute

CERT Coordination Center

IBM AIX vulnerable to DoS

Vulnerability Note VU#102345

Overview

Description

Impact

Solution

Vendor Information

IBM Affected

Status

Vendor Statement

Vendor Information

Addendum

CVSS Metrics

References

Acknowledgements

Other Information

Contact CERT/CC