Signature Detail

Short Name	OS:AIX:PDNSD-OF
Severity	Critical
Recommended	No
Recommended Action	Drop
Category	OS
Keywords	AIX Source Code Browser pdnsd Buffer Overflow
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

OS: AIX Source Code Browser pdnsd Buffer Overflow

This signature detects attempts to exploit a known vulnerability in the source code browser Program Database Name Server Daemon (PDNSd) component of the C Set ++ compiler, in the IBM AIX operating system. All versions are susceptible. Successful attackers can gain root access.

Extended Description

The Source Code Browser's Program Database Name Server Daemon (pdnsd) component of the C Set ++ compiler for AIX contains a remotely exploitable buffer overflow. This vulnerability allows local or remote attackers to compromise root privileges on vulnerable systems.

Affected Products

IBM AIX 4.1.0
IBM AIX 4.1.1
IBM AIX 4.1.2
IBM AIX 4.1.3
IBM AIX 4.1.4
IBM AIX 4.1.5
IBM AIX 4.2.0
IBM AIX 4.2.1

References

BugTraq: 3237
CVE: CVE-1999-0745
URL: http://nvd.nist.gov/nvd.cfm?cvename=CVE-1999-0745
URL: http://www.securiteam.com/unixfocus/2EUQDR5S0W.html
URL: http://www.ciac.org/ciac/bulletins/j-059.shtml

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

OS: AIX Source Code Browser pdnsd Buffer Overflow

Extended Description

Affected Products

References