oval:org.mitre.oval:def:20886

Definition Id: oval:org.mitre.oval:def:20886

Oval ID:	oval:org.mitre.oval:def:20886
Title:	"Record of death" vulnerability
Description:	The kssl_keytab_is_available function in ssl/kssl.c in OpenSSL before 0.9.8n, when Kerberos is enabled but Kerberos configuration files cannot be opened, does not check a certain return value, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via SSL cipher negotiation, as demonstrated by a chroot installation of Dovecot or stunnel without Kerberos configuration files inside the chroot.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2010-0433	Version:	4
Platform(s):	IBM AIX 6.1	Product(s):
Definition Synopsis:
IBM AIX 6.1 is installed AND filesets openssl.base less than 0.9.8.1103 AND OpenSSL-fips.base less than 12.9.8.1103

Definition Id: oval:org.mitre.oval:def:5267

Oval ID:	oval:org.mitre.oval:def:5267
Title:	IBM AIX 6.1 is installed
Description:	The operating system installed on the system is IBM AIX 6.1.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ibm:aix:6.1	Version:	3
Platform(s):	IBM AIX 6.1	Product(s):
Definition Synopsis:
IBM AIX version is greater than or equal 6100-00 AND IBM AIX version is less than 7100-00
Referenced By:
oval:org.mitre.oval:def:20886