Lucene search
K

6 matches found

OSV
OSV
added 2023/05/25 5:1 p.m.14 views

GHSA-QWHM-H7V3-MRJX Improper handling of NTS cookie length that could crash the ntpd-rs server

Impact ntpd-rs does not validate the length of NTS cookies in received NTP packets to the server. An attacker can crash the server by sending a specially crafted NTP packet containing a cookie shorter than what the server expects. The server also crashes when it is not configured to handle NTS...

7.5CVSS7.5AI score0.00708EPSS
Exploits0References5
NVD
NVD
added 2017/07/21 2:29 p.m.17 views

CVE-2015-5219

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service infinite loop via a crafted NTP packet...

7.5CVSS7.2AI score0.05839EPSS
Exploits0References24
Prion
Prion
added 2017/07/21 2:29 p.m.25 views

Type confusion

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service infinite loop via a crafted NTP packet...

5CVSS6.8AI score0.05839EPSS
Exploits0References24Affected Software15
Debian CVE
Debian CVE
added 2017/07/21 2:0 p.m.27 views

CVE-2015-5219

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service infinite loop via a crafted NTP packet...

7.5CVSS7AI score0.05839EPSS
Exploits0
Mageia
Mageia
added 2015/09/08 5:55 p.m.41 views

Updated ntp packages fix security vulnerabilities

Updated ntp packages fix security vulnerability: A flaw was found in the way ntpd processed certain remote configuration packets. An attacker could use a specially crafted package to cause ntpd to crash if the attacker had authenticated access to remote ntpd configuration CVE-2015-5146. It was...

7.5CVSS6.8AI score0.07483EPSS
Exploits0References3
OSV
OSV
added 2015/08/25 12:0 a.m.3 views

UBUNTU-CVE-2015-5219

The ULOGTOD function in ntp.d in SNTP before 4.2.7p366 does not properly perform type conversions from a precision value to a double, which allows remote attackers to cause a denial of service infinite loop via a crafted NTP packet...

7.5CVSS7AI score0.05839EPSS
Exploits0References4
Rows per page
Query Builder