Vulnerabilities > CVE-1999-1075 - Unspecified vulnerability in IBM AIX 4.1.5

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

ibm

NVD

Published: 1998-03-18

Updated: 2016-10-18

Summary

inetd in AIX 4.1.5 dynamically assigns a port N when starting ttdbserver (ToolTalk server), but also inadvertently listens on port N-1 without passing control to ttdbserver, which allows remote attackers to cause a denial of service via a large number of connections to port N-1, which are not properly closed by inetd.

Vulnerable Configurations

Part	Description	Count
OS	Ibm IBM AIX 4.1.5	1

References

http://marc.info/?l=bugtraq&m=89025820612530&w=2