logo
DATABASE RESOURCES PRICING ABOUT US

Vulnerabilities Identified in Network Time Protocol Daemon (ntpd)

Description

The Network Time Foundation's NTP Project has has released version ntp-4.2.8p10 to address multiple vulnerabilities in ntpd. Exploitation of some of these vulnerabilities may allow a remote attacker to cause a denial-of-service condition. US-CERT encourages users and administrators to review the [NTP Security Notice Page](<http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities>) for vulnerability and mitigation details. This product is provided subject to this Notification and this [Privacy & Use](<https://www.dhs.gov/privacy-policy>) policy. **Please share your thoughts.** We recently updated our anonymous [product survey](<https://www.surveymonkey.com/r/CISA-cyber-survey?product=https://us-cert.cisa.gov/ncas/current-activity/2017/03/22/Vulnerabilities-Identified-Network-Time-Protocol-Daemon-ntpd>); we'd welcome your feedback.