Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.27 views

Rockwell Automation Stratix NTP Authentication bypass (CVE-2015-1798)

A vulnerability in the message authentication code MAC validation routine of ntpd could allow an unauthenticated, remote attacker to bypass the NTP authentication feature. The vulnerability is due to incorrect validation of the MAC field. An attacker could exploit this vulnerability by sending...

1.8CVSS6.7AI score0.02219EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/18 3:10 a.m.27 views

Security Bulletin: Multiple vulnerabilities in NTP, OpenSSL and GNU glibc affect IBM Netezza Host Management

Summary NTP, OpenSSL, GNU glibc and Libreswan are used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVEs Vulnerability Details CVEID: CVE-2015-1799 DESCRIPTION: Network Time Protocol NTP Project NTP daemon ntpd is vulnerable to a denial of service, caus...

7.8CVSS1AI score0.89058EPSS
Exploits13Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.36 views

EulerOS Virtualization 3.0.1.0 : ntp (EulerOS-SA-2019-1556)

According to the versions of the ntp packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A vulnerability was discovered in the NTP server's parsing of configuration directives. A remote, authenticated attacker could cause...

9.8CVSS7.7AI score0.29037EPSS
Exploits8References21
RedHat Linux
RedHat Linux
added 2016/11/03 8:8 a.m.9 views

ntp: missing key check allows impersonation between authenticated peers (VU#357792)

A flaw was found in the way NTP verified trusted keys during symmetric key authentication. An authenticated client A could use this flaw to modify a packet sent between a server B and a client C using a key that is different from the one known to the client A...

7.7CVSS7.1AI score0.05658EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2016/11/03 8:8 a.m.92 views

Moderate: Red Hat Security Advisory: ntp security and bug fix update

An update for ntp is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

7.7CVSS7.2AI score0.12282EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2015/08/25 12:0 a.m.115 views

AIX 6.1 TL 9 : ntp (IV73783)

Network Time Protocol NTP Project NTP daemon ntpd is vulnerable to a denial of service, caused by an error when using symmetric key authentication. By sending specially-crafted packets to both peering hosts, an attacker could exploit this vulnerability to prevent synchronization. %NASLMINLEVEL...

4.3CVSS6.3AI score0.00902EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/08/25 12:0 a.m.44 views

AIX 7.1 TL 2 : ntp (IV74262)

Network Time Protocol NTP Project NTP daemon ntpd is vulnerable to a denial of service, caused by an error when using symmetric key authentication. By sending specially-crafted packets to both peering hosts, an attacker could exploit this vulnerability to prevent synchronization. %NASLMINLEVEL...

4.3CVSS6.3AI score0.00902EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/07/02 12:0 a.m.69 views

AIX 6.1 TL 6 : ntp4 (IV71094)

https://vulners.com/cve/CVE-2014-9297 Network Time Protocol NTP Project NTP daemon ntpd could allow a remote attacker to conduct spoofing attacks, caused by insufficient entropy in PRNG. An attacker could exploit this vulnerability to spoof the IPv6 address ::1 to bypass ACLs and launch further...

4.3CVSS6.4AI score0.00902EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/07/02 12:0 a.m.46 views

AIX 7.1 TL 0 : ntp4 (IV71096)

https://vulners.com/cve/CVE-2014-9297 Network Time Protocol NTP Project NTP daemon ntpd could allow a remote attacker to conduct spoofing attacks, caused by insufficient entropy in PRNG. An attacker could exploit this vulnerability to spoof the IPv6 address ::1 to bypass ACLs and launch further...

4.3CVSS6.4AI score0.00902EPSS
Exploits0References3
IBM AIX
IBM AIX
added 2015/06/29 10:0 a.m.101 views

Vulnerabilities in NTPv4 affect AIX,Vulnerabilities in NTPv4 affect VIOS

IBM SECURITY ADVISORY First Issued: Mon Jun 29 10:00:16 CDT 2015 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/ntp4advisory.asc https://aix.software.ibm.com/aix/efixes/security/ntp4advisory.asc...

4.3CVSS7AI score0.00902EPSS
Exploits0
CNVD
CNVD
added 2015/04/09 12:0 a.m.1 views

NTP ntpd Denial of Service Vulnerability

NTP Network Time Protocol is a protocol used by clients to synchronize the date and time with a time server. A denial of service vulnerability exists in NTP ntpd due to inconsistencies in packets received by NTP4 installations using symmetric key authentication. An attacker is allowed to exploit...

4.3CVSS6.8AI score0.00902EPSS
Exploits0References1
CNVD
CNVD
added 2015/04/09 12:0 a.m.2 views

NTP MAC Spoofing Vulnerability

NTP Network Time Protocol is a protocol used by clients to synchronize the date and time with a time server. A MAC spoofing vulnerability exists in NTP. Due to NTP4 installation using symmetric key authentication when the unauthenticated code MAC is received. Allows an attacker to exploit the...

1.8CVSS7.3AI score0.02219EPSS
Exploits0References1
Rows per page
Query Builder