CVE-2012-0194

Summary

The TCP implementation in IBM AIX 5.3, 6.1, and 7.1, when the Large Send Offload option is enabled, allows remote attackers to cause a denial of service (assertion failure and panic) via an unspecified series of packets.

Analysis Common Vulnerability Score System v2.0

Severity	High
Base Score	7.1/10
Exploit Score	8.6/10
Access Vector	Network
Access Complexity	Medium
Authentication	None
Impact Score	6.9/10
Confidentiality Impact	None
Availability Impact	Complete
Integrity Impact	None
Vector String	AV:N/AC:M/Au:N/C:N/I:N/A:C

Common Vulnerability Score System v3.1

NIST has not assigned a CVSSv3.1 Score.

Products Reported

CPE	Vulnerable	Start	Excluding
cpe:2.3:o:ibm:aix:5.3:*:*:*:*:*:*:*	Yes	-	-
cpe:2.3:o:ibm:aix:6.1:*:*:*:*:*:*:*	Yes	-	-
cpe:2.3:o:ibm:aix:7.1:*:*:*:*:*:*:*	Yes	-	-

References

http://aix.software.ibm.com/aix/efixes/security/large_send_advisory.asc
http://secunia.com/advisories/47865
http://securitytracker.com/id?1026640
http://www.ibm.com/support/docview.wss?uid=isg1IV13751
http://www.ibm.com/support/docview.wss?uid=isg1IV13820
http://www.ibm.com/support/docview.wss?uid=isg1IV13827
http://www.ibm.com/support/docview.wss?uid=isg1IV14209
http://www.ibm.com/support/docview.wss?uid=isg1IV14210
http://www.ibm.com/support/docview.wss?uid=isg1IV14211
http://www.securityfocus.com/bid/51864
https://exchange.xforce.ibmcloud.com/vulnerabilities/72562