ID CVE-2006-6915 Type cve Reporter NVD Modified 2011-03-07T21:47:15
Description
ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote authenticated users to cause a denial of service (port exhaustion) via unspecified vectors. NOTE: some details were obtained from third party sources.
{"href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-6915", "history": [], "references": ["http://www-1.ibm.com/support/docview.wss?uid=isg1IY91787", "http://www.vupen.com/english/advisories/2007/0101", "ftp://aix.software.ibm.com/aix/efixes/security/README", "http://securitytracker.com/id?1017480", "http://www.securityfocus.com/bid/21940", "http://www-1.ibm.com/support/docview.wss?uid=isg1IY89168"], "lastseen": "2016-09-03T08:07:05", "bulletinFamily": "NVD", "title": "CVE-2006-6915", "cpe": ["cpe:/o:ibm:aix:5.3.0", "cpe:/o:ibm:aix:5.2.0"], "viewCount": 1, "id": "CVE-2006-6915", "hash": "14d05404d50c1364fcf14b0d952fa437bd50710d6e0f45ecae847964ca796ca4", "description": "ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote authenticated users to cause a denial of service (port exhaustion) via unspecified vectors. NOTE: some details were obtained from third party sources.", "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "cvelist": ["CVE-2006-6915"], "scanner": [], "modified": "2011-03-07T21:47:15", "cvss": {"score": 4.0, "vector": "AV:NETWORK/AC:LOW/Au:SINGLE_INSTANCE/C:NONE/I:NONE/A:PARTIAL/"}, "objectVersion": "1.2", "reporter": "NVD", "type": "cve", "published": "2006-12-31T00:00:00", "enchantments": {"score": {"value": 5.0, "vector": "NONE", "modified": "2016-09-03T08:07:05"}, "vulnersScore": 5.0}}
{"osvdb": [{"lastseen": "2017-04-28T13:20:29", "references": [], "description": "# No description provided by the source\n\n## References:\nVendor Specific News/Changelog Entry: http://www-1.ibm.com/support/docview.wss?uid=isg1IY89168\nVendor Specific News/Changelog Entry: ftp://aix.software.ibm.com/aix/efixes/security/README\nVendor Specific News/Changelog Entry: http://www-1.ibm.com/support/docview.wss?uid=isg1IY91787\nSecurity Tracker: 1017480\n[Secunia Advisory ID:23688](https://secuniaresearch.flexerasoftware.com/advisories/23688/)\n[Related OSVDB ID: 32655](https://vulners.com/osvdb/OSVDB:32655)\nKeyword: bos.net.tcp.client\nFrSIRT Advisory: ADV-2007-0101\n[CVE-2006-6915](https://vulners.com/cve/CVE-2006-6915)\nBugtraq ID: 21940\n", "edition": 1, "reporter": "OSVDB", "published": "2006-09-04T05:33:54", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "AIX ftpd Unspecified Port Exhaustion DoS", "type": "osvdb", "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-6915"], "modified": "2006-09-04T05:33:54", "href": "https://vulners.com/osvdb/OSVDB:32656", "id": "OSVDB:32656", "cvss": {"score": 4.0, "vector": "AV:NETWORK/AC:LOW/Au:SINGLE_INSTANCE/C:NONE/I:NONE/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-01T23:39:28", "references": ["http://www-01.ibm.com/support/docview.wss?uid=isg1IY91468", "http://www-01.ibm.com/support/docview.wss?uid=isg1IY89168"], "pluginID": "65311", "description": "The remote host is missing AIX PTF U809506, which is related to the security of the package bos.net.tcp.client.", "edition": 4, "reporter": "Tenable", "published": "2013-03-13T00:00:00", "title": "AIX 5.3 TL 6 : bos.net.tcp.client (U809506)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "AIX Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-6915", "CVE-2006-6914"], "modified": "2013-03-14T00:00:00", "cpe": ["cpe:/o:ibm:aix:5.3"], "id": "AIX_U809506.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=65311", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were extracted\n# from AIX Security PTF U809506. The text itself is copyright (C)\n# International Business Machines Corp.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(65311);\n script_version(\"$Revision: 1.1 $\");\n script_cvs_date(\"$Date: 2013/03/14 01:14:39 $\");\n\n script_cve_id(\"CVE-2006-6914\", \"CVE-2006-6915\");\n\n script_name(english:\"AIX 5.3 TL 6 : bos.net.tcp.client (U809506)\");\n script_summary(english:\"Check for PTF U809506\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote AIX host is missing a vendor-supplied security patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is missing AIX PTF U809506, which is related to the\nsecurity of the package bos.net.tcp.client.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www-01.ibm.com/support/docview.wss?uid=isg1IY89168\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www-01.ibm.com/support/docview.wss?uid=isg1IY91468\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Install the appropriate missing security-related fix.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:ibm:aix:5.3\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/04\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/03/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013 Tenable Network Security, Inc.\");\n script_family(english:\"AIX Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AIX/oslevel\", \"Host/AIX/version\", \"Host/AIX/lslpp\");\n\n exit(0);\n}\n\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"aix.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif ( ! get_kb_item(\"Host/AIX/version\") ) audit(AUDIT_OS_NOT, \"AIX\");\nif ( ! get_kb_item(\"Host/AIX/lslpp\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nflag = 0;\n\nif ( aix_check_patch(ml:\"530006\", patch:\"U809506\", package:\"bos.net.tcp.client.5.3.0.54\") < 0 ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:aix_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}]}
