ntp -- denial of service vulnerability

🗓️ 21 Oct 2015 00:00:00Reported by FreeBSDType

Network Time Foundation NTP Project medium-severity vulnerability fixed in ntp-4.2.8p

Reporter	Title	Published	Views	Family All 111
Tenable Nessus	AIX NTP v4 Advisory : ntp_advisory5.asc (IV81129) (IV81130)	9 Aug 201700:00	–	nessus
Tenable Nessus	F5 Networks BIG-IP : NTP vulnerability (K10600056)	24 Feb 201600:00	–	nessus
Tenable Nessus	AIX NTP Advisory : ntp_advisory5 (IV81129) (IV81130)	4 Mar 201600:00	–	nessus
Tenable Nessus	FreeBSD : ntp -- denial of service vulnerability (4eae4f46-b5ce-11e5-8a2b-d050996490d0)	8 Jan 201600:00	–	nessus
Tenable Nessus	Oracle Linux 6 / 7 : ntp (ELSA-2015-1930)	27 Oct 201500:00	–	nessus
Tenable Nessus	Scientific Linux Security Update : ntp on SL6.x, SL7.x i386/x86_64 (20151026)	27 Oct 201500:00	–	nessus
Tenable Nessus	CentOS 6 / 7 : ntp (CESA-2015:1930)	27 Oct 201500:00	–	nessus
Tenable Nessus	Network Time Protocol Daemon (ntpd) 3.x / 4.x < 4.2.8p5 Denial Of Service Vulnerability	22 Jan 201900:00	–	nessus
Tenable Nessus	RHEL 6 / 7 : ntp (RHSA-2015:1930)	27 Oct 201500:00	–	nessus
Tenable Nessus	OracleVM 3.3 : ntp (OVMSA-2015-0140)	27 Oct 201500:00	–	nessus

Vulners

Node

ntp ntpRange<4.2.8p5

ntp ntpRange<4.3.78

freebsd freebsdRange10.2–10.2_9

Source	Link
support	www.support.ntp.org/bin/view/Main/SecurityNotice
cs	www.cs.bu.edu/~goldbe/NTPattack.html
support	www.support.ntp.org/bin/view/Main/NtpBug2956

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	ntp	4.2.8p5	UNKNOWN
FreeBSD	any	noarch	ntp-devel	4.3.78	UNKNOWN
FreeBSD	10	noarch	freebsd	10.2	UNKNOWN
FreeBSD	10	noarch	freebsd	10.2_9	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Oct 2015 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS25

CVSS37.5

EPSS0.36124