Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-0281

The mustendd driver in IBM AIX 5.3, 6.1, 7.1, and 7.2 and VIOS 2.2.x, when the jumbo_frames feature is not enabled, allows remote attackers to cause a denial of service (FC1763 or FC5899 adapter crash) via crafted packets.

Published

2016-08-08T01:59:02.367

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 3.7 (LOW)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	ibm	aix	5.3	Yes
Operating System	ibm	aix	6.1	Yes
Operating System	ibm	aix	7.1	Yes
Operating System	ibm	aix	7.2	Yes
Application	ibm	vios	2.2.0.10	Yes
Application	ibm	vios	2.2.0.11	Yes
Application	ibm	vios	2.2.0.12	Yes
Application	ibm	vios	2.2.0.13	Yes
Application	ibm	vios	2.2.1.0	Yes
Application	ibm	vios	2.2.1.1	Yes
Application	ibm	vios	2.2.1.3	Yes
Application	ibm	vios	2.2.1.4	Yes
Application	ibm	vios	2.2.1.5	Yes
Application	ibm	vios	2.2.1.6	Yes
Application	ibm	vios	2.2.1.7	Yes
Application	ibm	vios	2.2.1.8	Yes
Application	ibm	vios	2.2.1.9	Yes
Application	ibm	vios	2.2.2.0	Yes
Application	ibm	vios	2.2.2.1	Yes
Application	ibm	vios	2.2.2.2	Yes
Application	ibm	vios	2.2.2.3	Yes
Application	ibm	vios	2.2.2.4	Yes
Application	ibm	vios	2.2.2.5	Yes
Application	ibm	vios	2.2.3.0	Yes
Application	ibm	vios	2.2.3.1	Yes
Application	ibm	vios	2.2.3.2	Yes
Application	ibm	vios	2.2.3.3	Yes
Application	ibm	vios	2.2.3.4	Yes

References

http://aix.software.ibm.com/aix/efixes/security/mustendd_advisory.asc Vendor Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg1IV80569 Broken Link ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg1IV81357 Broken Link ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg1IV81459 Broken Link ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg1IV82421 Broken Link ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg1IV84184 Broken Link ([email protected])
http://www.securityfocus.com/bid/92193 ([email protected])
http://www.securitytracker.com/id/1036481 ([email protected])
http://aix.software.ibm.com/aix/efixes/security/mustendd_advisory.asc Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IV80569 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IV81357 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IV81459 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IV82421 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg1IV84184 Broken Link (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/92193 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1036481 (af854a3a-2127-422b-91ae-364da2661108)