Lucene search
K

36 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.1 views

SUSE CVE-2009-0021

NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA keys, a similar vulnerability to...

5CVSS7.7AI score0.03218EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/03/12 12:0 a.m.28 views

Solaris 10 (x86) : 139501-02

SunOS 5.10x86: openssl patch. Date this patch was last updated by Sun : Feb/24/09 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7.5CVSS7.9AI score0.05146EPSS
Exploits6References12
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.33 views

Oracle Linux 5 : ntp (ELSA-2009-0046)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2009-0046 advisory. 4.2.2p1-9.el53.1 - fix check for malformed signatures 479698, CVE-2009-0021 Tenable has extracted the preceding description block directly from the Oracle Linux...

5CVSS5.5AI score0.03218EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/09/10 12:0 a.m.30 views

Slackware: Security Advisory (SSA:2009-014-03)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS7.7AI score0.05146EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.35 views

Scientific Linux Security Update : ntp on SL4.x, SL5.x i386/x86_64

A flaw was discovered in the way the ntpd daemon checked the return value of the OpenSSL EVPVerifyFinal function. On systems using NTPv4 authentication, this could lead to an incorrect verification of cryptographic signatures, allowing time-spoofing attacks. CVE-2009-0021 Note: This issue only...

5CVSS5.4AI score0.03218EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.23 views

CentOS Update for ntp CESA-2009:0046 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5CVSS5.2AI score0.03218EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/08/09 12:0 a.m.28 views

CentOS Update for ntp CESA-2009:0046 centos5 i386

Check for the Version of ntp OpenVAS Vulnerability Test CentOS Update for ntp CESA-2009:0046 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

5CVSS7.8AI score0.03218EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/12/14 12:0 a.m.28 views

Fedora Core 10 FEDORA-2009-13121 (ntp)

The remote host is missing an update to ntp announced via advisory FEDORA-2009-13121. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

6.8CVSS8.1AI score0.32288EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.27 views

SuSE9 Security Update : xntp, xntp-doc (YOU Patch Number 12338)

This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 Additionally a fix non-security for starting ntpd with the option -x was added. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

5CVSS5.3AI score0.03218EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.26 views

openSUSE Security Update : ntp (ntp-439)

This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ntp-439. The text description of th...

5CVSS5.2AI score0.03218EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.22 views

openSUSE Security Update : ntp (ntp-439)

This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ntp-439. The text description of th...

5CVSS5.2AI score0.03218EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2009/06/05 12:0 a.m.22 views

Fedora Core 10 FEDORA-2009-5273 (ntp)

The remote host is missing an update to ntp announced via advisory FEDORA-2009-5273. OpenVAS Vulnerability Test $Id: fcore20095273.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5273 ntp Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.8CVSS0.21123EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/06/05 12:0 a.m.24 views

Fedora Core 10 FEDORA-2009-5273 (ntp)

The remote host is missing an update to ntp announced via advisory FEDORA-2009-5273. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

6.8CVSS7.9AI score0.21123EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2009/06/05 12:0 a.m.17 views

Fedora Core 9 FEDORA-2009-5275 (ntp)

The remote host is missing an update to ntp announced via advisory FEDORA-2009-5275. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

6.8CVSS7.9AI score0.21123EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.36 views

Solaris 10 (x86) : 139501-02

SunOS 5.10x86: openssl patch. Date this patch was last updated by Sun : Feb/24/09 %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a recommended security fix. Disabled on 2011/10/24. C Tenable Network Security, Inc. if ! definedfunc"bnrando...

7.5CVSS7.9AI score0.05146EPSS
Exploits6References12
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.31 views

Fedora 10 : ntp-4.2.4p6-1.fc10 (2009-0544)

This update fixes CVE-2009-0021: NTP 4.2.4 before 4.2.4p5 and 4.2.5 before 4.2.5p150 does not properly check the return value from the OpenSSL EVPVerifyFinal function, which allows remote attackers to bypass validation of the certificate chain via a malformed SSL/TLS signature for DSA and ECDSA...

5.8CVSS7.4AI score0.05146EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.26 views

Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : ntp vulnerability (USN-705-1)

It was discovered that NTP did not properly perform signature verification. A remote attacker could exploit this to bypass certificate validation via a malformed SSL/TLS signature. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security...

7.5CVSS7.4AI score0.05146EPSS
Exploits6References12
OpenVAS
OpenVAS
added 2009/03/02 12:0 a.m.24 views

SuSE Security Summary SUSE-SR:2009:005

The remote host is missing updates announced in advisory SUSE-SR:2009:005. SuSE Security Summaries are short on detail when it comes to the names of packages affected by a particular bug. Because of this, while this test will detect out of date packages, it cannot tell you what bugs impact which...

10CVSS1.4AI score0.71986EPSS
Exploits16
Tenable Nessus
Tenable Nessus
added 2009/02/20 12:0 a.m.24 views

openSUSE 10 Security Update : xntp (xntp-5936)

This update of ntp improves a check for the return value of openssl's function EVPVerifyFinal. CVE-2009-0021 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update xntp-5936. The text description of...

5CVSS5.2AI score0.03218EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/02/02 12:0 a.m.23 views

RedHat Security Advisory RHSA-2009:0046

The remote host is missing updates announced in advisory RHSA-2009:0046. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced time source. A flaw was discovered in the way the ntpd daemon checked the return value of the OpenSSL EVPVerifyFinal function. On syste...

5CVSS7.7AI score0.03218EPSS
Exploits0References2
Rows per page
Query Builder