IBM Corporation Information for VU#800113

Multiple DNS implementations vulnerable to cache poisoning



Vendor Statement

IBM AIX 5.2, 5.3, and 6.1 include two versions of BIND based upon ISC

version 9.2.1 and 8.3.3, therefore they are affected by CERT

Please refer to the following APAR numbers for this issue when
contacting IBM support:

AIX Level      APAR #
AIX 5.2 TL10   IZ26667
AIX 5.3 TL6    IZ26668
AIX 5.3 TL7    IZ26669
AIX 5.3 TL8    IZ26670
AIX 6.1 TL0    IZ26671
AIX 6.1 TL1    IZ26672

To receive AIX Security Advisories via email, please visit:

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References



There are no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.