Use after free

The NTP implementation in Cisco IOS and IOS XE does not properly support use of the access-group command for a "deny all" configuration, which allows remote attackers to bypass intended restrictions on time synchronization via a standard query, aka Bug ID CSCuj66318...

CVE-2014-3309

The NTP implementation in Cisco IOS and IOS XE does not properly support use of the access-group command for a "deny all" configuration, which allows remote attackers to bypass intended restrictions on time synchronization via a standard query, aka Bug ID CSCuj66318...

CVE-2014-3309

Summary of CVE-2014-3309 (Cisco) : The NTP implementation in Cisco IOS and IOS XE is vulnerable due to improper handling of the ntp access-group command in a deny-all configuration, potentially allowing a remote attacker to bypass NTP access restrictions and query the NTP server configured to den...

Updated ntp packages work around security vulnerability

The "monlist" command of the NTP protocol is currently abused in a DDoS reflection attack. This is done by spoofing packets from addresses to which the attack is directed to. The ntp installations itself are not target of the attack, but they are part of the DDoS network which the attacker is...

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation - Windows

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94219 Stand: 13...

How to troubleshoot CIM hardware monitoring

Challenge The CIM API allows Veeam products to receive up-to-date information without requesting hardware refreshes, but this requires a separate connection, and if that connection cannot be made, the hardware data will be collected as it was in earlier versions, and request periodic hardware...

Guest OS Event Logs Indicate a Time Shift Has Occurred During Backup

Challenge There is a time shift on the guest VM during the Veeam job when the snapshot is taken. You are getting messages such as the following in the system event log: Event ID: 1 The system time has changed to from . Cause VMware Tools may be configured to synchronize the virtual machine's time...

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation - Windows

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94219 Diese Prüfung bezieht si...

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation - Windows

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94219 Diese Prüfung bezieht si...

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation (Windows)

IT-Grundschutz M4.227: Einsatz eines lokalen NTP-Servers zur Zeitsynchronisation Windows. ACHTUNG: Dieser Test wird nicht mehr unterstützt. Er wurde ersetzt durch den entsprechenden Test der nun permanent and die aktuelle EL angepasst wird: OID 1.3.6.1.4.1.25623.1.0.94219 Diese Prüfung bezieht si...

RedHat Security Advisory RHSA-2009:1651

The remote host is missing updates announced in advisory RHSA-2009:1651. The Network Time Protocol NTP is used to synchronize a computer's time with a referenced time source. Robin Park and Dmitri Vinokurov discovered a flaw in the way ntpd handled certain malformed NTP packets. ntpd logged...

[SECURITY] Fedora 12 Update: ntp-4.2.4p8-1.fc12

The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon. Perl scripts ntp-wait and ntptrace are in the ntp-perl...

[SECURITY] Fedora 9 Update: ntp-4.2.4p7-1.fc9

The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon. Perl scripts ntp-wait and ntptrace are in the ntp-perl...

[SECURITY] Fedora 9 Update: ntp-4.2.4p6-1.fc9

The Network Time Protocol NTP is used to synchronize a computer's time with another reference time source. This package includes ntpd a daemon which continuously adjusts system time and utilities used to query and configure the ntpd daemon. Perl scripts ntp-wait and ntptrace are in the ntp-perl...

Security aspects of time synchronization infrastructure

A large number of services on modern corporate network require time to be synchronized within network or with absolute time and may fail if there are any problems with time synchronization. Below are just few examples of services and required time precision. For synchronization within network:...

RHEL 4 : ntp (RHSA-2006:0393)

Updated ntp packages that fix several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a reference time source. The NTP daemon ntpd, when run with the...

DeluxeBB 1.06 - 'Attachment mod_mime' Remote Command Execution

!/usr/bin/php -q -d shortopentag=on ? echo "DeluxeBB = v1.06 attachment modmime exploit\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n"; echo "tested & working against a fresh deluxebb installation\r\n\r\n"; if $argc4 echo "Usage: php ".$argv0." host...