Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.16 views

Rockwell Automation Stratix Network Time Protocol Password Length Memory Corruption (CVE-2015-7854)

Multiple Cisco products incorporate a version of the ntpd package. Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service DoS condition or modify the time being advertised by a device acting as a...

8.8CVSS7.2AI score0.1456EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits20References2
NVD
NVD
added 2017/08/07 8:29 p.m.16 views

CVE-2015-7854

Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted key file...

8.8CVSS9.4AI score0.1456EPSS
Exploits0References6
OSV
OSV
added 2017/08/07 8:29 p.m.7 views

CVE-2015-7854

Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service daemon crash or possibly execute arbitrary code via a crafted key file...

8.8CVSS9.6AI score
Exploits0References8
CVE
CVE
added 2017/08/07 8:0 p.m.117 views

CVE-2015-7854

CVE-2015-7854 is a memory corruption vulnerability in ntpd’s password management. A crafted key file can trigger a buffer overflow, potentially crashing the daemon or allowing arbitrary code execution by remote authenticated users. Affected are NTP 4.2.x prior to 4.2.8p4 and 4.3.x prior to 4.3.77...

8.8CVSS9.3AI score0.1456EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.45 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1311-1)

This network time protocol server ntp was updated to 4.2.8p6 to fix the following issues : Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way. - 'controlkey 1' is added...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References98
Tenable Nessus
Tenable Nessus
added 2016/05/09 12:0 a.m.45 views

SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1247-1)

ntp was updated to version 4.2.8p6 to fix 28 security issues. Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way, some options have been renamed or dropped. - 'controlkey 1' is added during update to ntp.conf to allow sntp to work. - The local cloc...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References88
Tenable Nessus
Tenable Nessus
added 2015/11/20 12:0 a.m.52 views

openSUSE Security Update : ntp (openSUSE-2015-767)

This ntp update provides the following security and non security fixes : - Update to 4.2.8p4 to fix several security issues bsc951608 : - CVE-2015-7871: NAK to the Future: Symmetric association authentication bypass via crypto-NAK - CVE-2015-7855: decodenetnum will ASSERT botch instead of returni...

9.8CVSS6.8AI score0.81762EPSS
Exploits8References18
FreeBSD Advisory
FreeBSD Advisory
added 2015/10/26 12:0 a.m.26 views

FreeBSD-SA-15:25.ntp

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-15:25.ntp Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities of ntp REVISED Category: contrib Module: ntp Announced: 2015-10-26, revised on...

9.8CVSS6.9AI score0.81762EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2015/10/22 12:0 a.m.48 views

FreeBSD : ntp -- 13 low- and medium-severity vulnerabilities (c4a18a12-77fc-11e5-a687-206a8a720317)

ntp.org reports : NTF's NTP Project has been notified of the following 13 low- and medium-severity vulnerabilities that are fixed in ntp-4.2.8p4, released on Wednesday, 21 October 2015 : - Bug 2941 CVE-2015-7871 NAK to the Future: Symmetric association authentication bypass via crypto-NAK Cisco...

9.8CVSS7AI score0.81762EPSS
Exploits8References19
Rows per page
Query Builder