Vulnerabilities > CVE-2007-3537 - Unspecified vulnerability in IBM OS 400

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

ibm

NVD

Published: 2007-07-03

Updated: 2024-11-21

Summary

IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain system information and possibly bypass firewall rules.

Vulnerable Configurations

Part	Description	Count
OS	Ibm IBM OS 400 V4R5 IBM OS 400 V4R4 IBM OS 400 V5R2M0 IBM OS 400 R520 IBM OS 400 V4R3 IBM OS 400 V5R1 IBM OS 400 V5R3M0 IBM OS 400 V4R2M0	8

References

http://osvdb.org/37792
http://osvdb.org/37792
http://secunia.com/advisories/25885
http://secunia.com/advisories/25885
http://www.securityfocus.com/bid/24706
http://www.securityfocus.com/bid/24706
http://www-1.ibm.com/support/docview.wss?uid=nas2742405285431729b86256e620067dc17
http://www-1.ibm.com/support/docview.wss?uid=nas2742405285431729b86256e620067dc17
https://exchange.xforce.ibmcloud.com/vulnerabilities/35173
https://exchange.xforce.ibmcloud.com/vulnerabilities/35173