AIX 5.3 TL 12 : (U846347)

high Nessus Plugin ID 72842


The remote AIX host is missing a vendor-supplied security patch.


The remote host is missing AIX PTF U846347, which is related to the security of the package

Vulnerability which allows remote attackers to (1) register or (2) unregister RPC services, and consequently cause a denial of service or obtain sensitive information from interprocess communication, via crafted UDP packets containing service commands.

Note: The ifix provided also contains the fix for CVE-2012-0194 and CVE-2011-1385 since they affect the same fileset.

See the following for CVE-2012-0194: dvisory.asc CVE-2011-1385: y.asc.


Install the appropriate missing security-related fix.

See Also

Plugin Details

Severity: High

ID: 72842

File Name: aix_U846347.nasl

Version: 1.4

Type: local

Published: 3/6/2014

Updated: 4/21/2023

Risk Information


Risk Factor: Low

Score: 2.7


Risk Factor: High

Base Score: 7.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:ibm:aix:5.3

Required KB Items: Host/local_checks_enabled, Host/AIX/oslevel, Host/AIX/version, Host/AIX/lslpp

Patch Publication Date: 1/23/2012

Vulnerability Publication Date: 1/23/2012

Reference Information

CVE: CVE-2012-0194