oval:org.mitre.oval:def:24135

Definition Id: oval:org.mitre.oval:def:24135

Oval ID:	oval:org.mitre.oval:def:24135
Title:	AIX OpenSSL DTLS invalid fragment vulnerability
Description:	The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly validate fragment lengths in DTLS ClientHello messages, which allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a long non-initial fragment.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2014-0195	Version:	4
Platform(s):	IBM AIX 6.1 IBM AIX 7.1	Product(s):
Definition Synopsis:
platforms IBM AIX 6.1 is installed AND IBM AIX 7.1 is installed AND filesets fileset test openssl.base greater than or equal 1.0.1.500 AND openssl.base less than or equal 1.0.1.510 OR fileset test openssl.base greater than or equal 0.9.8.401 AND openssl.base less than or equal 0.9.8.2501 OR fileset test openssl.base greater than or equal 12.9.8.1100 AND openssl.base less than or equal 12.9.8.2501

Definition Id: oval:org.mitre.oval:def:18828

Oval ID:	oval:org.mitre.oval:def:18828
Title:	IBM AIX 7.1 is installed
Description:	The operating system installed on the system is IBM AIX 7.1.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ibm:aix:7.1	Version:	3
Platform(s):	IBM AIX 7.1	Product(s):
Definition Synopsis:
IBM AIX version is greater than or equal 7100-00 AND IBM AIX version is less than 8100-00
Referenced By:
oval:org.mitre.oval:def:24135

Definition Id: oval:org.mitre.oval:def:5267

Oval ID:	oval:org.mitre.oval:def:5267
Title:	IBM AIX 6.1 is installed
Description:	The operating system installed on the system is IBM AIX 6.1.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:ibm:aix:6.1	Version:	3
Platform(s):	IBM AIX 6.1	Product(s):
Definition Synopsis:
IBM AIX version is greater than or equal 6100-00 AND IBM AIX version is less than 7100-00
Referenced By:
oval:org.mitre.oval:def:24135