search menu icon-carat-right cmu-wordmark

CERT Coordination Center

IBM AIX vulnerable to buffer overflow in RPC routines

Vulnerability Note VU#273779

Original Release Date: 2002-09-16 | Last Revised: 2002-09-16

Overview

IBM AIX contains a possible buffer-overflow vulnerability.

Description

Version 4.3 of IBM AIX has a possible buffer-overflow vulnerability in its RPC routines, due to use of an incorrect variable data type. No further information is available from the vendor.

Impact

The complete impact of this vulnerability is not yet known.

Solution

Apply a patch from your vendor

Upgrade to the latest version of AIXV4.

Vendor Information

273779
 

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to IBM for reporting this vulnerability.

This document was written by Shawn Van Ittersum.

Other Information

CVE IDs: None
Severity Metric: 6.30
Date Public: 2002-03-28
Date First Published: 2002-09-16
Date Last Updated: 2002-09-16 22:59 UTC
Document Revision: 6

Sponsored by CISA.