Vulnerability Note VU#273779

IBM AIX vulnerable to buffer overflow in RPC routines

Original Release date: 16 Sep 2002 | Last revised: 16 Sep 2002


IBM AIX contains a possible buffer-overflow vulnerability.


Version 4.3 of IBM AIX has a possible buffer-overflow vulnerability in its RPC routines, due to use of an incorrect variable data type. No further information is available from the vendor.


The complete impact of this vulnerability is not yet known.


Apply a patch from your vendor

Upgrade to the latest version of AIXV4.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
IBMUnknown22 Apr 200206 Aug 2002
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A



Thanks to IBM for reporting this vulnerability.

This document was written by Shawn Van Ittersum.

Other Information

  • CVE IDs: Unknown
  • Date Public: 28 Mar 2002
  • Date First Published: 16 Sep 2002
  • Date Last Updated: 16 Sep 2002
  • Severity Metric: 6.30
  • Document Revision: 6


If you have feedback, comments, or additional information about this vulnerability, please send us email.