Oval Definition:oval:org.cisecurity:def:402
Revision Date:2016-03-11Version:9
Title:Network Time Protocol (NTP) vulnerability in AIX
Description:Network Time Protocol (NTP) is vulnerable to a denial of service, caused by an error in the sntp program. By sending specially crafted NTP packets, a remote attacker from within the local network could exploit this vulnerability to cause the application to enter into an infinite loop.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2015-5219
Platform(s):IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis
  • IBM AIX 6100-09 meets CVE-2015-5219
  • IBM AIX 6100-09 is installed
  • AND NOT All filesets for APAR IV79942 are installed
  • OR IBM AIX 7100-03 meets CVE-2015-5219
  • IBM AIX 7100-03 is installed
  • AND NOT All filesets for APAR IV79943 are installed
  • OR IBM AIX 7100-04 meets CVE-2015-5219
  • IBM AIX 7100-04 is installed
  • AND NOT All filesets for APAR IV79944 are installed
  • BACK