Oval Definition:
oval:org.cisecurity:def:399
Revision Date
:
2016-03-11
Version
:
9
Title
:
Network Time Protocol (NTP) vulnerability in AIX
Description
:
Network Time Protocol (NTP) could allow a remote attacker to obtain sensitive information, caused by a memory leak in CRYPTO_ASSOC. An attacker could exploit this vulnerability to obtain sensitive information.
Family
:
unix
Class
:
vulnerability
Status
:
ACCEPTED
Reference(s)
:
CVE-2015-7701
Platform(s)
:
IBM AIX 6.1
IBM AIX 7.1
Product(s)
:
Definition Synopsis
IBM AIX 6100-09 meets CVE-2015-7701
IBM AIX 6100-09 is installed
AND
NOT
All filesets for APAR IV79942 are installed
OR
IBM AIX 7100-03 meets CVE-2015-7701
IBM AIX 7100-03 is installed
AND
NOT
All filesets for APAR IV79943 are installed
OR
IBM AIX 7100-04 meets CVE-2015-7701
IBM AIX 7100-04 is installed
AND
NOT
All filesets for APAR IV79944 are installed
BACK