CVE-2006-0674 — Improper Restriction of Operations within the Bounds of a Memory Buffer in IBM AIX

3 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.1%

top 79.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedFeb 13

Latest updateMay 1

Description

Buffer overflow in the arp command of IBM AIX 5.3 L, 5.3, 5.2.2, 5.2 L, and 5.2 allows local users to cause a denial of service (crash) via a long iftype argument.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDibm/aix5 versions+4

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-7c59-c4r2-h8w2: Buffer overflow in the arp command of IBM AIX 5↗2022-05-01

▶

CVEList

CVE-2006-0674: Buffer overflow in the arp command of IBM AIX 5↗2006-02-13

▶