{"vuid":"VU#152955","idnumber":"152955","name":"IBM AIX FC contains buffer overflow exploitable during session setup","keywords":["IBM","AIX","FC","buffer overflow","session setup. APAR IY27310"],"overview":"The FC client in IBM's AIX contains a buffer overflow that may cause a core dump in the client.","clean_desc":"The IBM AIX FC client allows a buffer overflow of a few bytes in the client process, which could cause intermittent core dumps during session setup. Overflowing the buffer is difficult or impossible without local, privileged access to the client.","impact":"Exploitation of this vulnerability causes the FC client to crash.","resolution":"Upgrade to AIXV4 For more information, see http://www.ibm.com/servers/aix/","workarounds":"","sysaffected":"","thanks":"Thanks to IBM for reporting this vulnerability.","author":"This document was written by Shawn Van Ittersum.","public":["h","t","t","p",":","/","/","a","r","c","h","i","v","e","s",".","n","e","o","h","a","p","s","i","s",".","c","o","m","/","a","r","c","h","i","v","e","s","/","a","i","x","/","2","0","0","2","-","q","1","/","0","0","0","9",".","h","t","m","l"],"cveids":[""],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2002-04-18T20:34:06Z","publicdate":"2002-03-28T00:00:00Z","datefirstpublished":"2002-09-16T14:13:03Z","dateupdated":"2002-12-10T23:08:17Z","revision":9,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"10","cam_impact":"3","cam_easeofexploitation":"14","cam_attackeraccessrequired":"15","cam_scorecurrent":"2.3625","cam_scorecurrentwidelyknown":"2.953125","cam_scorecurrentwidelyknownexploited":"5.315625","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":2.3625,"vulnote":null}