Lucene search

MitreCVE-2010-1124

HistoryMar 26, 2010 - 6:30 p.m.

CVE-2010-1124

2010-03-2618:30:00

mitre

web.nvd.nist.gov

ibm

aix

bos.rte.libc

denial of service

vulnerability

nvd

cve-2010-1124

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

50.1%

JSON

bos.rte.libc 5.3.9.4 on IBM AIX 5.3 does not properly support reading a certain address field after a successful getaddrinfo function call, which allows context-dependent attackers to cause a denial of service (application crash) via unspecified vectors, as demonstrated by IBM DB2 crashes on “systems with databases cataloged with alternate servers using IP addresses.”

Affected configurations

Nvd

Node

ibmaixMatch5.3

ibmaixMatch5.3.0

VendorProductVersionCPE
ibmaix5.3cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*
ibmaix5.3.0cpe:2.3:o:ibm:aix:5.3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ibm	aix	5.3	cpe:2.3:o:ibm:aix:5.3:::::::*
ibm	aix	5.3.0	cpe:2.3:o:ibm:aix:5.3.0:::::::*

References

www-01.ibm.com/support/docview.wss?uid=isg1IZ66710

www.securityfocus.com/bid/38964

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.001

Percentile

50.1%

JSON

Related for CVE-2010-1124