CVE-2007-3537

Currently unrated

Key Information:

Vendor: IBM
Status: Os 400
Vendor: CVE Published:; 3 July 2007

Summary

IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain system information and possibly bypass firewall rules.

References

http://secunia.com/advisories/25885

third-party-advisoryx_refsource_SECUNIA

http://osvdb.org/37792

vdb-entryx_refsource_OSVDB

http://www-1.ibm.com/support/docview.wss?uid=nas274240528...

vendor-advisoryx_refsource_AIXAPAR

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 3, 2007
Vulnerability Reserved
Jul 3, 2007