CVE-2012-0194 — Reachable Assertion in IBM AIX

5 documents4 sources

Severity

7.1HIGHNVD

EPSS

1.7%

top 17.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

IBM AIX

Timeline

PublishedFeb 6

Latest updateMay 4

Description

The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cause a denial of service (assertion failure and panic) via an unspecified series of packets.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

▶NVDibm/aix5.3, 6.1, 7.1+2

Patches

Patch: aix.software.ibm.com ↗Patch: aix.software.ibm.com ↗

🔴Vulnerability Details

GHSA

GHSA-xcrj-x9ff-h583: The TCP implementation in IBM AIX 5↗2022-05-04

▶

CVEList

CVE-2012-0194: The TCP implementation in IBM AIX 5↗2012-02-06

▶

💬Community

Bugzilla

CVE-2012-5478 JBoss: AuthorizationInterceptor allows JMX operation to proceed despite authorization failure↗2012-11-08

▶