Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2015-7977

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command...

5.9CVSS7AI score0.06295EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.28 views

Debian: Security Advisory (DLA-559-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7AI score0.15081EPSS
Exploits8References3
F5 Networks
F5 Networks
added 2023/02/21 5:33 p.m.33 views

K06288381: NTP vulnerabilities CVE-2015-7977 and CVE-2015-7978

Security Advisory Description CVE-2015-7977 ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command. CVE-2015-7978 NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a...

7.5CVSS6.8AI score0.09905EPSS
Exploits0Affected Software22
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits20References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2016:1175-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7.1AI score0.11887EPSS
Exploits5References23
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:1247-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits13References33
OSV
OSV
added 2017/01/30 9:59 p.m.7 views

CVE-2015-7977

ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command...

5.9CVSS7.3AI score
Exploits0References28
CVE
CVE
added 2017/01/30 9:0 p.m.194 views

CVE-2015-7977

CVE-2015-7977 : ntpd/nptdsp (NTP) vulnerability where processing of the ntpdc reslist command could cause a NULL pointer dereference and crash ntpd. This is triggered by large restriction lists. Affects ntpd/ntpdc in NTP 4.2.x leading up to 4.2.8p6 and 4.3.x prior to 4.3.90. Remediation: upgrade ...

5.9CVSS6.3AI score0.06295EPSS
Exploits0References27Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/12/22 12:0 a.m.43 views

F5 Networks BIG-IP : NTP vulnerabilities (K06288381)

CVE-2015-7977 ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command. CVE-2015-7978 NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service stack...

7.5CVSS6.8AI score0.09905EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/12/15 12:0 a.m.62 views

Scientific Linux Security Update : ntp on SL7.x x86_64 (20161103)

Security Fixes : - It was found that the fix for CVE-2014-9750 was incomplete: three issues were found in the value length checks in NTP's ntpcrypto.c, where a packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker coul...

7.7CVSS7.3AI score0.12282EPSS
Exploits1References18
Oracle linux
Oracle linux
added 2016/11/09 12:0 a.m.65 views

ntp security and bug fix update

4.2.6p5-25.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-25 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack CVE-2016-1550 4.2.6p5-24 -...

7.7CVSS1.7AI score0.97549EPSS
Exploits31
Debian
Debian
added 2016/07/25 9:37 p.m.53 views

[SECURITY] [DLA 559-1] ntp security update

Package : ntp Version : 1:4.2.6.p5+dfsg-2+deb7u7 CVE ID : CVE-2015-7974 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8158 CVE-2016-1547 CVE-2016-1548 CVE-2016-1550 CVE-2016-2516 CVE-2016-2518 Several vulnerabilities were discovered in the Network Time Protocol daemon and utili...

7.7CVSS7.1AI score0.15081EPSS
Exploits8
Debian
Debian
added 2016/07/25 9:15 p.m.52 views

[SECURITY] [DSA 3629-1] ntp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3629-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 25, 2016 https://www.debian.org/security/faq -...

7.7CVSS8.6AI score0.15081EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2016/06/09 12:0 a.m.47 views

Scientific Linux Security Update : ntp on SL6.x i386/x86_64 (20160510)

Security Fixes : - It was found that the fix for CVE-2014-9750 was incomplete: three issues were found in the value length checks in NTP's ntpcrypto.c, where a packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker coul...

7.5CVSS7.3AI score0.12282EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.45 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1311-1)

This network time protocol server ntp was updated to 4.2.8p6 to fix the following issues : Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way. - 'controlkey 1' is added...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References98
OpenVAS
OpenVAS
added 2016/05/17 12:0 a.m.47 views

openSUSE: Security Advisory for ntp (openSUSE-SU-2016:1292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.11887EPSS
Exploits4References1
Tenable Nessus
Tenable Nessus
added 2016/05/17 12:0 a.m.51 views

CentOS 6 : ntp (CESA-2016:0780)

An update for ntp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

7.5CVSS7.2AI score0.12282EPSS
Exploits0References13
Cent OS
Cent OS
added 2016/05/16 10:19 a.m.89 views

ntp, ntpdate security update

CentOS Errata and Security Advisory CESA-2016:0780 An update for ntp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7.2AI score0.12282EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2016/05/16 12:0 a.m.51 views

Oracle Linux 6 : ntp (ELSA-2016-0780)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-0780 advisory. - don't accept server/peer packets with zero origin timestamp CVE-2015-8138 - fix crash with reslist command CVE-2015-7977, CVE-2015-7978 - fix crash...

7.5CVSS6.7AI score0.12282EPSS
Exploits2References12
OPENSUSE Linux
OPENSUSE Linux
added 2016/05/12 9:7 p.m.58 views

Security update for ntp (important)

ntp was updated to version 4.2.8p6 to fix 12 security issues. Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 These security issues were fixed: - CVE-2015-8158: Fixed potential infinite loop in ntpq bsc962966. - CVE-2015-8138: Zero Origin Timestamp Bypass bsc963002....

2.1CVSS7.2AI score0.11887EPSS
Exploits5References20
Rows per page
Query Builder