IBM Information for VU#152955
IBM AIX FC contains buffer overflow exploitable during session setup
- Vendor Information Help Date Notified: 22 Apr 2002
- Statement Date:
- Date Updated: 06 Jun 2002
"The commands and their arguments are not accessible by ordinary users, and it is unlikely an exploit could be crafted in any case.
"Customers who use AIX v4.3.x need only to apply APAR# 27310 to eliminate the buffer overflow."
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.