#VU7390 Denial of service in IBM AIX - CVE-2017-6464


Vulnerability identifier: #VU7390

Vulnerability risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2017-6464

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
IBM AIX
Operating systems & Components / Operating system

Vendor:
IBM Corporation

Description
The vulnerability allows a remote authenticated attacker to cause DoS condition.

The weakness exists due to improper input validation. A remote attacker can use malformed mode configuration directive to  trigger memory corruption and cause the system to crash.

Successful exploitation of the vulnerability results in denial of service.

Mitigation
Install update from vendor's website.

Vulnerable software versions

IBM AIX: 5.3 - 7.2

External links
https://aix.software.ibm.com/aix/efixes/security/ntp_advisory9.asc

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Multiple NTP vulnerabilities in Junos OS and Junos OS Evolved
Red Hat update for ntp
Red Hat update for ntp
Multiple vulnerabilities in IBM AIX
Slackware Linux update for ntp
Amazon Linux AMI update for ntp
Fedora 26 update for ntp
Fedora 25 update for ntp
Fedora 24 update for ntp