4.9
CVE-2012-2192
- EPSS 0.42%
- Veröffentlicht 20.06.2012 10:27:28
- Zuletzt bearbeitet 16.06.2026 23:41:09
- Quelle psirt@us.ibm.com
- CVE-Watchlists
- Unerledigt
The socketpair function in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.1.4-FP-25 SP-02 allows local users to cause a denial of service (system crash) via a crafted application that leverages the presence of a socket on the free list.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.42% | 0.335 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.9 | 3.9 | 6.9 |
AV:L/AC:L/Au:N/C:N/I:N/A:C
|
http://aix.software.ibm.com/aix/efixes/security/socket_advisory.asc
http://www.ibm.com/support/docview.wss?uid=isg1IV16603
http://www.ibm.com/support/docview.wss?uid=isg1IV19178
http://www.ibm.com/support/docview.wss?uid=isg1IV21128
http://www.ibm.com/support/docview.wss?uid=isg1IV21131
http://www.ibm.com/support/docview.wss?uid=isg1IV21235
http://www.securityfocus.com/bid/53567
http://www.securitytracker.com/id?1027126
https://exchange.xforce.ibmcloud.com/vulnerabilities/76032