Oval Definition:oval:org.mitre.oval:def:24449
Revision Date:2015-04-13Version:18
Title:Network Time Protocol (NTP) vulnerability in AIX
Description:The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2013-5211
Platform(s):IBM AIX 6.1
IBM AIX 7.1
Product(s):
Definition Synopsis
  • platforms
  • IBM AIX 6.1 is installed
  • OR IBM AIX 7.1 is installed
  • AND filesets
  • File Version Exists
  • bos.net.tcp.client greater than or equal 5.3.12.0
  • AND bos.net.tcp.client less than or equal 5.3.12.10
  • OR File Version Exists
  • bos.net.tcp.client greater than or equal 6.1.7.0
  • AND bos.net.tcp.client less than or equal 6.1.7.20
  • OR File Version Exists
  • bos.net.tcp.client greater than or equal 6.1.8.0
  • AND bos.net.tcp.client less than or equal 6.1.8.17
  • OR File Version Exists
  • bos.net.tcp.client greater than or equal 6.1.9.0
  • AND bos.net.tcp.client less than or equal 6.1.9.1
  • OR File Version Exists
  • bos.net.tcp.client greater than or equal 7.1.1.0
  • AND bos.net.tcp.client less than or equal 7.1.1.20
  • OR File Version Exists
  • bos.net.tcp.client greater than or equal 7.1.2.0
  • AND bos.net.tcp.client less than or equal 7.1.2.19
  • OR File Version Exists
  • bos.net.tcp.client greater than or equal 7.1.3.0
  • AND bos.net.tcp.client less than or equal 7.1.3.2
    • BACK