Lucene search
K

11 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:25 a.m.3 views

SUSE CVE-2014-9296

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

5CVSS9.5AI score0.16161EPSS
Exploits1References10
Tenable Nessus
Tenable Nessus
added 2015/01/23 12:0 a.m.42 views

Oracle Solaris Third-Party Patch Update : ntp (multiple_vulnerabilities_in_ntp)

The remote Solaris system is missing necessary patches to address security updates : - Multiple stack-based buffer overflows in ntpd in NTP before 4.2.8 allow remote attackers to execute arbitrary code via a crafted packet, related to 1 the cryptorecv function when the Autokey Authentication...

7.5CVSS7.4AI score0.7809EPSS
Exploits4References6
ArchLinux
ArchLinux
added 2014/12/22 12:0 a.m.62 views

ntp: multiple issues

Keys explicitly generated by "ntp-keygen -M" should be regenerated. - CVE-2014-9293 weak key generation ntpd generated a weak key for its internal use, with full administrative privileges. Attackers could use this key to reconfigure ntpd or to exploit other vulnerabilities. - CVE-2014-9294 weak k...

7.5CVSS6.6AI score0.7809EPSS
Exploits4References8
NVD
NVD
added 2014/12/20 2:59 a.m.16 views

CVE-2014-9296

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

5CVSS6.9AI score0.16161EPSS
Exploits1References19
OSV
OSV
added 2014/12/20 2:59 a.m.2 views

DEBIAN-CVE-2014-9296

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

5CVSS9.4AI score0.16161EPSS
Exploits1References1
OSV
OSV
added 2014/12/20 2:59 a.m.4 views

CVE-2014-9296

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

6.8AI score
Exploits0References20
Prion
Prion
added 2014/12/20 2:59 a.m.25 views

Authentication flaw

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

5CVSS7.4AI score0.16161EPSS
Exploits1References19Affected Software1
Debian CVE
Debian CVE
added 2014/12/20 2:0 a.m.39 views

CVE-2014-9296

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

5CVSS9.3AI score0.16161EPSS
Exploits1
Cvelist
Cvelist
added 2014/12/20 2:0 a.m.24 views

CVE-2014-9296

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

8.1AI score0.16161EPSS
Exploits1References19
CVE
CVE
added 2014/12/20 2:0 a.m.205 views

CVE-2014-9296

CVE-2014-9296 affects ntpd in NTP up to version 4.2.8, arising from a missing return on error in receive() (ntp_proto.c). This could allow remote attackers to trigger an unintended association change by sending crafted packets. The connected advisories indicate affected deployments include multip...

5CVSS8.6AI score0.16161EPSS
Exploits1References19Affected Software1
UbuntuCve
UbuntuCve
added 2014/12/19 12:0 a.m.41 views

CVE-2014-9296

The receive function in ntpproto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets...

5CVSS6.9AI score0.16161EPSS
Exploits1References5
Rows per page
Query Builder