CVE-2012-4817

The NFSv4 client implementation in IBM AIX 5.3, 6.1, and 7.1, and VIOS before 2.2.1.4-FP-25 SP-02, does not properly handle GID values, which allows remote attackers to cause a denial of service via unspecified vectors.

🔗 References (22)

• psirt@ushttp://aix.software.ibm.com/aix/efixes/security/nfsv4_advisory1.asc
• psirt@ushttp://osvdb.org/85427
• psirt@ushttp://secunia.com/advisories/50619
• psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1IV10327
• psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1IV11629
• psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1IV12169
• psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1IV17855
• psirt@ushttp://www.ibm.com/support/docview.wss?uid=isg1IV26436
• psirt@ushttp://www.securityfocus.com/bid/55546
• psirt@ushttp://www.securitytracker.com/id?1027531
• psirt@ushttps://exchange.xforce.ibmcloud.com/vulnerabilities/78431
• af854a3a-2127-422b-91ae-364da2661108http://aix.software.ibm.com/aix/efixes/security/nfsv4_advisory1.asc
• af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/85427
• af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/50619
• af854a3a-2127-422b-91ae-364da2661108http://www.ibm.com/support/docview.wss?uid=isg1IV10327