VULHUB ™

The filtering modules for AIX 4.3.2 do not allow you to filter tcp port numbers higher than 32767. This example was in the BugTraq posting regarding this problem: genfilt -v 4 -a D -s 0.0.0.0 -m 0.0.0.0 -d 0.0.0.0 -M 0.0.0.0 \ -c udp -o any -O eq -P 123 -l n -w I -i all Works fine... but... genfilt -v 4 -a D -s 0.0.0.0 -m 0.0.0.0 -d 0.0.0.0 -M 0.0.0.0 -c udp \ -o any -O eq -P 32768 -l n -w I -i all Fails with: Bad destination port/ICMP type "32768". It is believed that this problem is a result of incorrect type (short int) being used for the port number argument. Compromise may occur through services listening on ports that are higher than 32767.

The filtering modules for AIX 4.3.2 do not allow you to filter tcp port numbers higher than 32767. This example was in the BugTraq posting regarding this problem: genfilt -v 4 -a D -s 0.0.0.0 -m 0.0.0.0 -d 0.0.0.0 -M 0.0.0.0 \ -c udp -o any -O eq -P 123 -l n -w I -i all Works fine... but... genfilt -v 4 -a D -s 0.0.0.0 -m 0.0.0.0 -d 0.0.0.0 -M 0.0.0.0 -c udp \ -o any -O eq -P 32768 -l n -w I -i all Fails with: Bad destination port/ICMP type "32768". It is believed that this problem is a result of incorrect type (short int) being used for the port number argument. Compromise may occur through services listening on ports that are higher than 32767.