AIX 7.1 TL 2 : inet (IV42095)

2013-06-05T00:00:00
ID AIX_IV42095.NASL
Type nessus
Reporter This script is Copyright (C) 2013 Tenable Network Security, Inc.
Modified 2020-09-02T00:00:00

Description

If an AIX machine has IPv6 address configured, and if a malformed IPv6 packet in a specific format is sent to that machine, the machine can hang while processing that packet. The problem can happen only if an IPv6 address is configured on any of the network interfaces.

                                        
                                            #
# (C) Tenable Network Security, Inc.
#
# The text in the description was extracted from AIX Security
# Advisory inet_advisory.asc.
#

include("compat.inc");

if (description)
{
  script_id(66787);
  script_version("$Revision: 1.4 $");
  script_cvs_date("$Date: 2013/06/26 10:47:25 $");

  script_cve_id("CVE-2013-3035");
  script_bugtraq_id(60348);

  script_name(english:"AIX 7.1 TL 2 : inet (IV42095)");
  script_summary(english:"Check for APAR IV42095");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote AIX host is missing a security patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"If an AIX machine has IPv6 address configured, and if a malformed IPv6
packet in a specific format is sent to that machine, the machine can
hang while processing that packet. The problem can happen only if an
IPv6 address is configured on any of the network interfaces."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://aix.software.ibm.com/aix/efixes/security/inet_advisory.asc"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Install the appropriate interim fix."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:7.1");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/06/04");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/06/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/06/05");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013 Tenable Network Security, Inc.");
  script_family(english:"AIX Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/AIX/lslpp", "Host/local_checks_enabled", "Host/AIX/version");

  exit(0);
}



include("audit.inc");
include("global_settings.inc");
include("aix.inc");
include("misc_func.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX");
if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);

if ( get_kb_item("Host/AIX/emgr_failure" ) ) exit(0, "This iFix check is disabled because : "+get_kb_item("Host/AIX/emgr_failure") );

flag = 0;

if (aix_check_ifix(release:"7.1", ml:"02", sp:"02", patch:"IV42095s2a", package:"bos.net.tcp.client", minfilesetver:"7.1.2.0", maxfilesetver:"7.1.2.15") < 0) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:aix_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");