Vulnerabilities > CVE-2012-0194 - Unspecified vulnerability in IBM AIX 5.3/6.1/7.1

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
ibm
nessus

Summary

The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cause a denial of service (assertion failure and panic) via an unspecified series of packets.

Vulnerable Configurations

Part Description Count
OS
Ibm
3

Nessus

  • NASL familyAIX Local Security Checks
    NASL idAIX_U849877.NASL
    descriptionThe remote host is missing AIX PTF U849877, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2020-06-01
    modified2020-06-02
    plugin id72848
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72848
    titleAIX 6.1 TL 6 : bos.net.tcp.client (U849877)
    code
    #%NASL_MIN_LEVEL 80502
    #
    # (C) Tenable Network Security, Inc.
    #
    # The descriptive text and package checks in this plugin were extracted
    # from AIX Security PTF U849877. The text itself is copyright (C)
    # International Business Machines Corp.
    #
    
    include("compat.inc");
    
    if (description)
    {
      script_id(72848);
      script_version("1.3");
      script_cvs_date("Date: 2019/09/16 14:13:08");
    
      script_cve_id("CVE-2012-0194");
    
      script_name(english:"AIX 6.1 TL 6 : bos.net.tcp.client (U849877)");
      script_summary(english:"Check for PTF U849877");
    
      script_set_attribute(
        attribute:"synopsis", 
        value:"The remote AIX host is missing a vendor-supplied security patch."
      );
      script_set_attribute(
        attribute:"description", 
        value:
    "The remote host is missing AIX PTF U849877, which is related to the
    security of the package bos.net.tcp.client.
    
    AIX could allow a remote attacker to cause a denial of service, caused
    by an error when the TCP large send offload option is enabled on a
    network interface. By sending a specially crafted sequence of packets,
    an attacker could exploit this vulnerability to cause a kernel panic."
      );
      script_set_attribute(
        attribute:"see_also",
        value:"http://www-01.ibm.com/support/docview.wss?uid=isg1IV13820"
      );
      script_set_attribute(
        attribute:"solution", 
        value:"Install the appropriate missing security-related fix."
      );
      script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C");
    
      script_set_attribute(attribute:"plugin_type", value:"local");
      script_set_attribute(attribute:"cpe", value:"cpe:/o:ibm:aix:6.1");
    
      script_set_attribute(attribute:"vuln_publication_date", value:"2012/01/23");
      script_set_attribute(attribute:"patch_publication_date", value:"2012/01/23");
      script_set_attribute(attribute:"plugin_publication_date", value:"2014/03/06");
      script_end_attributes();
    
      script_category(ACT_GATHER_INFO);
      script_copyright(english:"This script is Copyright (C) 2014-2019 Tenable Network Security, Inc.");
      script_family(english:"AIX Local Security Checks");
    
      script_dependencies("ssh_get_info.nasl");
      script_require_keys("Host/local_checks_enabled", "Host/AIX/oslevel", "Host/AIX/version", "Host/AIX/lslpp");
    
      exit(0);
    }
    
    
    
    include("audit.inc");
    include("global_settings.inc");
    include("aix.inc");
    
    if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
    if ( ! get_kb_item("Host/AIX/version") ) audit(AUDIT_OS_NOT, "AIX");
    if ( ! get_kb_item("Host/AIX/lslpp") ) audit(AUDIT_PACKAGE_LIST_MISSING);
    
    flag = 0;
    
    if ( aix_check_patch(ml:"610006", patch:"U849877", package:"bos.net.tcp.client.6.1.6.18") < 0 ) flag++;
    
    if (flag)
    {
      if (report_verbosity > 0) security_hole(port:0, extra:aix_report_get());
      else security_hole(0);
      exit(0);
    }
    else audit(AUDIT_HOST_NOT, "affected");
    
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV13827.NASL
    descriptionThere is an error in the handling of a particular ICMP packet in which a remote user can cause a denial of service. Note: The ifixes provided also contain the fix for CVE-2012-0194 since they affect the same fileset. See the following for CVE-2012-0194: http://aix.software.ibm.com/aix/efixes/security/large_send_a dvisory.asc.
    last seen2017-10-29
    modified2014-03-11
    plugin id63708
    published2013-01-24
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=63708
    titleAIX 5.3 TL 12 : icmp (IV13827)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV13820.NASL
    descriptionThere is an error in the handling of a particular ICMP packet in which a remote user can cause a denial of service. Note: The ifixes provided also contain the fix for CVE-2012-0194 since they affect the same fileset. See the following for CVE-2012-0194: http://aix.software.ibm.com/aix/efixes/security/large_send_a dvisory.asc.
    last seen2017-10-29
    modified2014-03-11
    plugin id64301
    published2013-01-30
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=64301
    titleAIX 6.1 TL 6 : icmp (IV13820)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV13751.NASL
    descriptionThere is an error in the handling of a particular ICMP packet in which a remote user can cause a denial of service. Note: The ifixes provided also contain the fix for CVE-2012-0194 since they affect the same fileset. See the following for CVE-2012-0194: http://aix.software.ibm.com/aix/efixes/security/large_send_a dvisory.asc.
    last seen2017-10-29
    modified2014-03-11
    plugin id64300
    published2013-01-30
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=64300
    titleAIX 6.1 TL 5 : icmp (IV13751)
  • NASL familyAIX Local Security Checks
    NASL idAIX_U849815.NASL
    descriptionThe remote host is missing AIX PTF U849815, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2020-06-01
    modified2020-06-02
    plugin id72847
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72847
    titleAIX 6.1 TL 5 : bos.net.tcp.client (U849815)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV14211.NASL
    descriptionAIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2017-10-29
    modified2014-08-15
    plugin id64304
    published2013-01-30
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=64304
    titleAIX 7.1 TL 1 : large_send (IV14211)
  • NASL familyAIX Local Security Checks
    NASL idAIX_U848193.NASL
    descriptionThe remote host is missing AIX PTF U848193, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2020-06-01
    modified2020-06-02
    plugin id72844
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72844
    titleAIX 6.1 TL 7 : bos.net.tcp.client (U848193)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV14209.NASL
    descriptionAIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2017-10-29
    modified2014-08-15
    plugin id64302
    published2013-01-30
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=64302
    titleAIX 6.1 TL 7 : large_send (IV14209)
  • NASL familyAIX Local Security Checks
    NASL idAIX_U849490.NASL
    descriptionThe remote host is missing AIX PTF U849490, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2020-06-01
    modified2020-06-02
    plugin id72846
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72846
    titleAIX 7.1 TL 1 : bos.net.tcp.client (U849490)
  • NASL familyAIX Local Security Checks
    NASL idAIX_IV14210.NASL
    descriptionThere is an error in the handling of a particular ICMP packet in which a remote user can cause a denial of service. Note: The ifixes provided also contain the fix for CVE-2012-0194 since they affect the same fileset. See the following for CVE-2012-0194: http://aix.software.ibm.com/aix/efixes/security/large_send_a dvisory.asc.
    last seen2017-10-29
    modified2014-03-11
    plugin id64303
    published2013-01-30
    reporterTenable
    sourcehttps://www.tenable.com/plugins/index.php?view=single&id=64303
    titleAIX 7.1 TL 0 : icmp (IV14210)
  • NASL familyAIX Local Security Checks
    NASL idAIX_U846347.NASL
    descriptionThe remote host is missing AIX PTF U846347, which is related to the security of the package bos.net.tcp.client. Vulnerability which allows remote attackers to (1) register or (2) unregister RPC services, and consequently cause a denial of service or obtain sensitive information from interprocess communication, via crafted UDP packets containing service commands. Note: The ifix provided also contains the fix for CVE-2012-0194 and CVE-2011-1385 since they affect the same fileset. See the following for CVE-2012-0194: http://aix.software.ibm.com/aix/efixes/security/large_send_a dvisory.asc CVE-2011-1385: http://aix.software.ibm.com/aix/efixes/security/icmp_advisor y.asc.
    last seen2020-06-01
    modified2020-06-02
    plugin id72842
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72842
    titleAIX 5.3 TL 12 : bos.net.tcp.client (U846347)
  • NASL familyAIX Local Security Checks
    NASL idAIX_U848205.NASL
    descriptionThe remote host is missing AIX PTF U848205, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2020-06-01
    modified2020-06-02
    plugin id72845
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72845
    titleAIX 7.1 : bos.net.tcp.client (U848205)
  • NASL familyAIX Local Security Checks
    NASL idAIX_U841068.NASL
    descriptionThe remote host is missing AIX PTF U841068, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2020-06-01
    modified2020-06-02
    plugin id72839
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72839
    titleAIX 6.1 TL 7 : bos.net.tcp.client (U841068)
  • NASL familyAIX Local Security Checks
    NASL idAIX_U843468.NASL
    descriptionThe remote host is missing AIX PTF U843468, which is related to the security of the package bos.net.tcp.client. AIX could allow a remote attacker to cause a denial of service, caused by an error when the TCP large send offload option is enabled on a network interface. By sending a specially crafted sequence of packets, an attacker could exploit this vulnerability to cause a kernel panic.
    last seen2020-06-01
    modified2020-06-02
    plugin id72840
    published2014-03-06
    reporterThis script is Copyright (C) 2014-2019 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/72840
    titleAIX 7.1 TL 1 : bos.net.tcp.client (U843468)

Seebug

bulletinFamilyexploit
descriptionBugtraq ID: 51864 CVE ID:CVE-2012-0194 IBM AIX是一款商业性质的操作系统 当在IBM AIX网络接口上启用TCP &quot;Large Send Offload&quot;选项时才能在一个错误,AIX允许远程攻击者对系统进行拒绝服务攻击。通过发送特殊构建的报文序列,攻击者可以利用此漏洞触发内核崩溃 0 IBM AIX 7.1 IBM AIX 6.1 IBM AIX 5.3 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息 http://aix.software.ibm.com/aix/efixes/security/large_send_advisory.asc
idSSV:30090
last seen2017-11-19
modified2012-02-06
published2012-02-06
reporterRoot
titleIBM AIX TCP栈拒绝服务漏洞