AIX telnet Login Remote DoS

1998-02-11T00:00:00
ID OSVDB:7992
Type osvdb
Reporter OSVDB
Modified 1998-02-11T00:00:00

Description

Vulnerability Description

IBM AIX contains a flaw that may allow a remote denial of service. The issue is triggered when telnetd receives an attack and system runs out of message blocks and hangs, and will result in loss of availability for the telnet service and all other tty activity to hang.

Solution Description

Upgrade AIX using the patch numbers AIX 4.1:  IX73427, AIX 4.2: IX73580 and AIX 4.3:  IX73214 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

IBM AIX contains a flaw that may allow a remote denial of service. The issue is triggered when telnetd receives an attack and system runs out of message blocks and hangs, and will result in loss of availability for the telnet service and all other tty activity to hang.

References:

Vendor Specific Solution URL: http://www-1.ibm.com/support/docview.wss?uid=isg1IX73580 ISS X-Force ID: 706 CVE-1999-0087 CIAC Advisory: i-029