Vulnerability Name:

CVE-2011-1385 (CCN-71616)

Assigned:2011-12-05
Published:2011-12-05
Updated:2018-01-10
Summary:IBM AIX 5.3, 6.1, and 7.1, and VIOS 2.1.x and 2.2.x, allows remote attackers to cause a denial of service (system crash) via an ICMP Echo Reply packet that contains 1 in the Identifier field, a different vulnerability than CVE-2012-0194.
CVSS v3 Severity:7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:7.8 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
6.6 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:U/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)
6.6 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C/E:U/RL:U/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-399
Vulnerability Consequences:Denial of Service
References:Source: CCN
Type: IBM SECURITY ADVISORY
Vulnerability in ICMP packet handling

Source: CONFIRM
Type: Patch, Vendor Advisory
http://aix.software.ibm.com/aix/efixes/security/icmp_advisory.asc

Source: MITRE
Type: CNA
CVE-2011-1385

Source: OSVDB
Type: UNKNOWN
79631

Source: CCN
Type: SA48149
IBM AIX ICMP Packet Handling Denial of Service Vulnerability

Source: SECUNIA
Type: UNKNOWN
48149

Source: AIXAPAR
Type: Vendor Advisory
IV03369

Source: AIXAPAR
Type: Vendor Advisory
IV04695

Source: AIXAPAR
Type: Vendor Advisory
IV07188

Source: AIXAPAR
Type: Vendor Advisory
IV08255

Source: AIXAPAR
Type: Vendor Advisory
IV13554

Source: AIXAPAR
Type: Vendor Advisory
IV13672

Source: BID
Type: UNKNOWN
52172

Source: CCN
Type: BID-52172
IBM AIX CVE-2011-1385 Remote Denial of Service Vulnerability

Source: SECTRACK
Type: UNKNOWN
1026742

Source: XF
Type: UNKNOWN
aix-icmp-echoreply-dos(71616)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ibm:vios:2.1.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.1.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.1.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.1.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.1.3.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.2.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.2.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.2.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.2.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.2.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.2.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:vios:2.2.1.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:5.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:6.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:7.1:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:ibm:aix:6.1:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:5.3:*:*:*:*:*:*:*
  • OR cpe:/o:ibm:aix:7.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:20700
    V
    		Vulnerability in ICMP packet handling
    2014-01-20
    BACK
    ibm vios 2.1.0.0
    ibm vios 2.1.2.10
    ibm vios 2.1.2.12
    ibm vios 2.1.2.13
    ibm vios 2.1.3.10
    ibm vios 2.2.0.10
    ibm vios 2.2.0.11
    ibm vios 2.2.0.12
    ibm vios 2.2.0.13
    ibm vios 2.2.1.0
    ibm vios 2.2.1.1
    ibm vios 2.2.1.3
    ibm aix 5.3
    ibm aix 6.1
    ibm aix 7.1
    ibm aix 6.1
    ibm aix 5.3
    ibm aix 7.1