ntp security update

CentOS Errata and Security Advisory CESA-2006:0393 Updated ntp packages that fix several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a reference...

RHEL 4 : ntp (RHSA-2006:0393)

Updated ntp packages that fix several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a reference time source. The NTP daemon ntpd, when run with the...

Low: Red Hat Security Advisory: ntp security update

Updated ntp packages that fix several bugs are now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The Network Time Protocol NTP is used to synchronize a computer's time with a reference time source. The NTP daemon ntpd, when run with the...

Then talk about the CMOS password-vulnerability warning-the black bar safety net

For the CMOS is concerned, I believe we already no longer unfamiliar. But it is the CMOS password, I want to really understand the person it is not too much, so we did some experiments to study a bit. Previously there have been a lot of people discussed, but I think there's still talk of the...

CVE-2006-1941

Neon Responder 5.4 for LANsurveyor allows remote attackers to cause a denial of service application outage via a crafted Clock Synchronisation packet that triggers an access violation...

Neon Responder 5.4 (Clock Synchronization) Denial of Service Exploit

No description provided by source. / Stefan Lochbihler/ include stdio.h include stdlib.h include winsock2.h pragma commentlib,"ws232" define PORT 4347 char CLOCKMSG = "\x00\x0e\x5a\x00\x4c\xe9\x24\xb1\x17\x88\x40\x84"; //Password = "" void usage char; void endpgr char ,SOCKET, char; unsigned long...

Neon Responder 5.4 - Clock Synchronization Denial of Service

Neon Responder 5.4 - Clock Synchronization Denial of Service / Stefan Lochbihler/ include include include pragma commentlib,"ws232" define PORT 4347 char CLOCKMSG = "\x00\x0e\x5a\x00\x4c\xe9\x24\xb1\x17\x88\x40\x84"; //Password = "" void usage char; void endpgr char ,SOCKET, char; unsigned long...

Neon Responder 5.4 - Clock Synchronization Denial of Service

/ Stefan Lochbihler/ include include include pragma commentlib,"ws232" define PORT 4347 char CLOCKMSG = "\x00\x0e\x5a\x00\x4c\xe9\x24\xb1\x17\x88\x40\x84"; //Password = "" void usage char; void endpgr char ,SOCKET, char; unsigned long gethost char ; int mainint argc, char argv WSADATA wsa; SOCKET...

Neon Responder 5.4 (Clock Synchronization) Denial of Service Exploit

Exploit for unknown platform in category dos / poc ==================================================================== Neon Responder 5.4 Clock Synchronization Denial of Service Exploit ==================================================================== / Stefan Lochbihler/ include include...

CVE-2005-4352

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value 19 Jan 2038, which then wraps around to the minimum value 13 Dec 190...

CVE-2005-4352

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value 19 Jan 2038, which then wraps around to the minimum value 13 Dec 190...

CVE-2002-2126

IPD 1.2 (Integrity Protection Driver) contains a vulnerability in restrictEnabled where driver installation is delayed by 20 minutes. This timing window lets a local user set the system clock back and insert malicious code during installation. Affected: IPD 1.2; root cause: clock-based delay in i...

CVE-2002-2126

restrictEnabled in Integrity Protection Driver IPD 1.2 delays driver installation for 20 minutes, which allows local users to insert malicious code by setting system clock to an earlier time...

[Full-disclosure] SecureW2 TLS security problem

Hi everyone! I was looking at the code for a TLS implementation, an open source implementation "SecureW2" by Alfa & Ariss, see: http://www.securew2.com/uk/index.htm I found that it uses weak random numbers when generating the pre-master-secret. The code is in "./Components/Common/release 3/versio...

security flaw

Real time clock RTC routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space...

CVE-2003-0984

Real time clock RTC routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space...

CVE-2003-0984

Real time clock RTC routines in Linux kernel 2.4.23 and earlier do not properly initialize their structures, which could leak kernel data to user space...

CVE-2002-2126

restrictEnabled in Integrity Protection Driver IPD 1.2 delays driver installation for 20 minutes, which allows local users to insert malicious code by setting system clock to an earlier time...

nt4+sp4.y2k.txt

Date: Tue, 23 Mar 1999 18:31:34 -0500 From: Ilya Slavin To: [email protected] Subject: NT Y2K issue post SP4 Those of you who are in the process of deploying SP4 or are planning to do so should be aware that a new Y2K problem was discovered in this service pack. Here's the scoop. I...

msie.high.sec.y2k.patch.txt

Date: Wed, 09 Jun 1999 15:54:47 -0400 From: Paul Karger Subject: Downloading Y2K fixes to Internet Explorer leads to clock problem I was attempting to install service pack 2 of Internet Explorer 4.01 in order to meet corporate Y2K requirements and ran into the following interesting problem. To...