Oval Definition:	oval:org.cisecurity:def:401
Revision Date: 2016-03-11 Version: 9 Title: Network Time Protocol (NTP) vulnerability in AIX Description: Network Time Protocol (NTP) is vulnerable to a denial of service, caused by ASSERT botch instead of returning FAIL on some invalid values by the decodenetnum() function. An attacker could exploit this vulnerability to cause a denial of service. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2015-7855 Platform(s): IBM AIX 6.1 IBM AIX 7.1 Product(s): Definition Synopsis IBM AIX 6100-09 meets CVE-2015-7855 IBM AIX 6100-09 is installed AND NOT All filesets for APAR IV79942 are installed OR IBM AIX 7100-03 meets CVE-2015-7855 IBM AIX 7100-03 is installed AND NOT All filesets for APAR IV79943 are installed OR IBM AIX 7100-04 meets CVE-2015-7855 IBM AIX 7100-04 is installed AND NOT All filesets for APAR IV79944 are installed
BACK