CVE-1999-1075

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Mar 18, 1998

Updated: Nov 20, 2024

Summary

CVE-1999-1075 is a vulnerability affecting the inetd service in AIX 4.1.5. When starting the ttdbserver (ToolTalk server), inetd dynamically assigns a port number N. However, it inadvertently listens on port N-1 without passing control to ttdbserver. This oversight allows remote attackers to cause a denial of service by flooding port N-1 with a large number of connections. The affected inetd instance fails to properly manage these connections, leading to resource exhaustion and service disruption.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM AIX

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlYB8
https://www.cve.org/CVERecord?id=CVE-1999-1075
https://nvd.nist.gov/vuln/detail/CVE-1999-1075

Back to Vulnerability Database