AIX 6.1 TL 5 : icmp (IV13751)

High Nessus Plugin ID 64300

Synopsis

The remote AIX host is missing a security patch.

Description

There is an error in the handling of a particular ICMP packet in which a remote user can cause a denial of service.

Note: The ifixes provided also contain the fix for CVE-2012-0194 since they affect the same fileset.

See the following for CVE-2012-0194:
http://aix.software.ibm.com/aix/efixes/security/large_send_a dvisory.asc.

Solution

Install the appropriate interim fix.

See Also

http://aix.software.ibm.com/aix/efixes/security/icmp_advisory.asc

Plugin Details

Severity: High

ID: 64300

File Name: aix_IV13751.nasl

Version: $Revision: 1.4 $

Type: local

Published: 2013/01/30

Modified: 2014/03/11

Dependencies: 12634

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:ibm:aix:6.1

Required KB Items: Host/AIX/lslpp, Host/local_checks_enabled, Host/AIX/version

Patch Publication Date: 2012/02/24

Vulnerability Publication Date: 2012/02/24

Reference Information

CVE: CVE-2011-1385, CVE-2012-0194