4 matches found
Exploit for Improper Restriction of Excessive Authentication Attempts in Netgate Pfsense_Plus
CVE-2023-27100 - pfSense Anti-brute force protection bypass...
CVE-2020-36382
OpenVPN Access Server 2.7.3 to 2.8.7 allows remote attackers to trigger an assert during the user authentication phase via incorrect authentication token data in an early phase of the user authentication resulting in a denial of service...
SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1568-1)
ntp was updated to version 4.2.8p8 to fix 17 security issues. These security issues were fixed : - CVE-2016-4956: Broadcast interleave bsc982068. - CVE-2016-2518: Crafted addpeer with hmode 7 causes array wraparound with MATCHASSOC bsc977457. - CVE-2016-2519: ctlgetitem return value not always...
ntp: off-path denial of service on authenticated broadcast mode
It was found that when NTP was configured in broadcast mode, a remote attacker could broadcast packets with bad authentication to all clients. The clients, upon receiving the malformed packets, would break the association with the broadcast server, causing them to become out of sync over a longer...