| Vulnerability Name: | CVE-1999-1408 (CCN-7195) | ||||||||
| Assigned: | 1997-03-05 | ||||||||
| Published: | 1997-03-05 | ||||||||
| Updated: | 2016-10-18 | ||||||||
| Summary: | Vulnerability in AIX 4.1.4 and HP-UX 10.01 and 9.05 allows local users to cause a denial of service (crash) by using a socket to connect to a port on the localhost, calling shutdown to clear the socket, then using the same socket to connect to a different port on localhost. | ||||||||
| CVSS v3 Severity: | 4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Wed, 5 Mar 1997 13:23:54 +0100 Bug in connect() for aix 4.1.4 ? Source: CCN Type: BugTraq Mailing List, Wed, 5 Mar 1997 21:26:07 +0000 Re: Bug in connect() for aix 4.1.4 ? Source: CCN Type: BugTraq Mailing List, Thu, 6 Mar 1997 11:52:51 +0100 Re: Bug in connect() ? Source: CCN Type: BugTraq Mailing List, Tue, 11 Mar 1997 12:13:23 -0500 Re: Bug in connect() for aix 4.1.4 ? Source: MITRE Type: CNA CVE-1999-1408 Source: BUGTRAQ Type: UNKNOWN 19970305 Bug in connect() for aix 4.1.4 ? Source: CCN Type: Hewlett-Packard Support Web site IT Resource Center Source: CCN Type: IBM Technical Support Web site AIX General Software Fixes Source: CCN Type: OSVDB ID: 8022 Multiple Vendor connect() Socket Shutdown Local DoS Source: BID Type: Exploit, Patch, Vendor Advisory 352 Source: CCN Type: BID-352 Multiple Vendor connect() Denial of Service Vulnerability Source: XF Type: UNKNOWN aix-hpux-connect-dos(7195) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||