IBM AIX FTPD Ephemeral Port Exhaustion Denial Of Service Vulnerability

A remote denial-of-service vulnerability has been reported in the IBM AIX FTPD server implementation. A remote authenticated FTPD user may exhaust all available ephemeral network ports on the computer.
A successful exploit of this vulnerability could result in a denial of service because no new connections can be initiated on ephemeral ports. In addition, system resources could be impacted if all of these ports are in use.

IBM AIX versions 5.2 and 5.3 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus