GEN:SID 1:1261
Message EXPLOIT AIX pdnsd overflow
Summary This event is genereated when an attempt to overflow the buffer of the IBM Program Database Name Server Daemon (PDNSD) is made.
Impact Serious. System compromize presenting the attacker with the opportunity to gain remote access to the victim host or execute arbitrary code with the privileges of the superuser account.
Detailed Information Some versions of IBM PDSND for AIX are vulnerable to a buffer overflow condition which can present the attacker with root privileges.


Affected Systems:
    PDSND versions 2 and 3
Affected Systems  
Attack Scenarios Exploit scripts are available
Ease of Attack Simple. Exploits are available.
Corrective Action Upgrade to the latest non-affected version of the software.

Disable the PDSND daemon.
Additional References CVE:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0745

Bugtraq:
http://www.securityfocus.com/bid/3237

CIAC:
http://www.ciac.org/ciac/bulletins/j-059.shtml

Rule References bugtraq: 3237
bugtraq: 590
cve: 1999-0745