Local Denial of Service Vulnerability in AIX and HP-UX
CVE-1999-1408

Currently unrated

Key Information:

Vendor: HP
Status: HP-ux; Aix
Vendor: CVE Published:; 5 March 1997

Summary

AIX 4.1.4 and HP-UX 10.01 and 9.05 contain a vulnerability that allows local users to exploit socket connections. By connecting to a port on the localhost and invoking shutdown to clear the socket, attackers can then use the same socket to connect to another port, effectively causing a denial of service by crashing the system. This vulnerability poses a significant risk to system reliability and operational continuity.

References

http://www.securityfocus.com/bid/352

vdb-entryx_refsource_BID

http://marc.info/?l=bugtraq&m=87602167420641&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability Reserved
Aug 31, 2001
Vulnerability published
Mar 5, 1997