Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2016-9042
HistoryJun 04, 2018 - 8:29 p.m.

CVE-2016-9042

2018-06-0420:29:00
Debian Security Bug Tracker
security-tracker.debian.org
10

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.02 Low

EPSS

Percentile

88.8%

JSON

An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.

OSVersionArchitecturePackageVersionFilename
Debian11allntp< 1:4.2.8p10+dfsg-1ntp_1:4.2.8p10+dfsg-1_all.deb
Debian10allntp< 1:4.2.8p10+dfsg-1ntp_1:4.2.8p10+dfsg-1_all.deb

Related

redhatcve 1
prion 1
nessus 12
cve 1
f5 1
ubuntucve 1
openvas 8
talos 1
seebug 1
freebsd 1
freebsd_advisory 1
ibm 3
fedora 1
slackware 1
symantec 1
ics 1
cloudfoundry 1
ubuntu 1
apple 2
redhatcve
redhatcve
CVE-2016-9042
2017-03-22 02:17:57
prion
prion
Race condition
2018-06-04 20:29:00
nessus
nessus
Siemens SIMATIC NET CP 443-1 OPC UA Improper Input Validation (CVE-2016-9042)
2023-05-02 00:00:00
FreeBSD : FreeBSD -- Multiple vulnerabilities of ntp (3c0237f5-420e-11e7-82c5-14dae9d210b8)
2017-05-30 00:00:00
Fedora 26 : ntp (2017-20d54b2782)
2017-07-17 00:00:00
cve
cve
CVE-2016-9042
2018-06-04 20:29:00
f5
f5
K39041624 : NTP vulnerability CVE-2016-9042
2017-05-11 00:00:00
ubuntucve
ubuntucve
CVE-2016-9042
2016-12-31 00:00:00
openvas
openvas
Palo Alto PAN-OS NTP Vulnerabilities
2017-07-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1052-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1048-1)
2021-04-19 00:00:00
talos
talos
Network Time Protocol Origin Timestamp Check Denial of Service Vulnerability
2017-03-29 00:00:00
seebug
seebug
Network Time Protocol Origin Timestamp Check Denial of Service Vulnerability(CVE-2016-9042)
2017-09-20 00:00:00
freebsd
freebsd
FreeBSD -- Multiple vulnerabilities of ntp
2017-04-12 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-17:03.ntp
2017-04-12 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in NTP affect IBM Chassis Management Module
2019-01-31 02:25:02
Security Bulletin: Multiple vulnerabilities in ntp affect IBM Flex System Manager (FSM)
2018-06-18 01:38:11
Security Bulletin: Vulnerabilities in ntp affect IBM Integrated Management Module II (IMM2) for System x, Flex and BladeCenter Systems
2023-04-14 14:32:25
fedora
fedora
[SECURITY] Fedora 26 Update: ntp-4.2.8p10-1.fc26
2017-04-01 18:10:49
slackware
slackware
[slackware-security] ntp
2017-04-22 16:42:41
symantec
symantec
SA147 : March 2017 NTP Security Vulnerabilities
2017-04-13 08:00:00
ics
ics
Siemens SIMATIC NET CP 443-1 OPC UA
2021-06-08 12:00:00
cloudfoundry
cloudfoundry
USN-3349-1: NTP vulnerabilities | Cloud Foundry
2017-08-04 00:00:00
ubuntu
ubuntu
NTP vulnerabilities
2017-07-05 00:00:00
apple
apple
About the security content of macOS High Sierra 10.13
2017-09-25 00:00:00
About the security content of macOS High Sierra 10.13 - Apple Support
2020-02-06 07:51:09

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.02 Low

EPSS

Percentile

88.8%

JSON
Related for DEBIANCVE:CVE-2016-9042
redhatcve1prion1nessus12cve1f51ubuntucve1openvas8talos1seebug1freebsd1freebsd_advisory1ibm3fedora1slackware1symantec1ics1cloudfoundry1ubuntu1apple2