Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2192

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2012-2192
Last Modified 21 Mar 2013 11:10:11
Published 20 Jun 2012 06:27:28
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-2192

Summary

The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 allows local users to cause a denial of service (system crash) via a crafted application that leverages the presence of a socket on the free list.

Vulnerable Systems

Operating System

  • Ibm Aix 5.3

  • Ibm Aix 6.1

  • Ibm Aix 7.1

  • Ibm Vios 2.2.1.4


References

XF - aix-socketpair-dos(76032)

AIXAPAR - IV21235

AIXAPAR - IV21131

AIXAPAR - IV21128

AIXAPAR - IV19178

AIXAPAR - IV16603

CONFIRM - http://aix.software.ibm.com/aix/efixes/security/socket_advisory.asc

BID - 53567

SECTRACK - 1027126


Last Updated: 27 May 2016 10:57:32