Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2015-7978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service stack exhaustion via an ntpdc relist command, which triggers...

7.5CVSS7.2AI score0.09905EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.28 views

Debian: Security Advisory (DLA-559-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7AI score0.15081EPSS
Exploits8References3
F5 Networks
F5 Networks
added 2023/02/21 5:33 p.m.33 views

K06288381: NTP vulnerabilities CVE-2015-7977 and CVE-2015-7978

Security Advisory Description CVE-2015-7977 ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command. CVE-2015-7978 NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a...

7.5CVSS6.8AI score0.09905EPSS
Exploits0Affected Software22
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2016:1175-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7.1AI score0.11887EPSS
Exploits5References23
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits20References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:1247-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits13References33
OSV
OSV
added 2017/01/30 9:59 p.m.5 views

CVE-2015-7978

NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service stack exhaustion via an ntpdc relist command, which triggers recursive traversal of the restriction list...

7.5CVSS7.3AI score
Exploits0References25
CVE
CVE
added 2017/01/30 9:0 p.m.200 views

CVE-2015-7978

CVE-2015-7978 affects NTPd (ntp) in versions before 4.2.8p6 and 4.3.0 before 4.3.90. A remote attacker can trigger a denial of service (stack exhaustion) by sending an ntpdc relist command, which causes recursive traversal of the restriction list. This is corroborated by multiple connected source...

7.5CVSS7.3AI score0.09905EPSS
Exploits0References24Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/12/22 12:0 a.m.43 views

F5 Networks BIG-IP : NTP vulnerabilities (K06288381)

CVE-2015-7977 ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command. CVE-2015-7978 NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service stack...

7.5CVSS6.8AI score0.09905EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/12/15 12:0 a.m.62 views

Scientific Linux Security Update : ntp on SL7.x x86_64 (20161103)

Security Fixes : - It was found that the fix for CVE-2014-9750 was incomplete: three issues were found in the value length checks in NTP's ntpcrypto.c, where a packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker coul...

7.7CVSS7.3AI score0.12282EPSS
Exploits1References18
Oracle linux
Oracle linux
added 2016/11/09 12:0 a.m.65 views

ntp security and bug fix update

4.2.6p5-25.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-25 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack CVE-2016-1550 4.2.6p5-24 -...

7.7CVSS1.7AI score0.97549EPSS
Exploits31
Debian
Debian
added 2016/07/25 9:37 p.m.53 views

[SECURITY] [DLA 559-1] ntp security update

Package : ntp Version : 1:4.2.6.p5+dfsg-2+deb7u7 CVE ID : CVE-2015-7974 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8158 CVE-2016-1547 CVE-2016-1548 CVE-2016-1550 CVE-2016-2516 CVE-2016-2518 Several vulnerabilities were discovered in the Network Time Protocol daemon and utili...

7.7CVSS7.1AI score0.15081EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2016/06/09 12:0 a.m.47 views

Scientific Linux Security Update : ntp on SL6.x i386/x86_64 (20160510)

Security Fixes : - It was found that the fix for CVE-2014-9750 was incomplete: three issues were found in the value length checks in NTP's ntpcrypto.c, where a packet with particular autokey operations that contained malicious data was not always being completely validated. A remote attacker coul...

7.5CVSS7.3AI score0.12282EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.45 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1311-1)

This network time protocol server ntp was updated to 4.2.8p6 to fix the following issues : Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way. - 'controlkey 1' is added...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References98
Tenable Nessus
Tenable Nessus
added 2016/05/17 12:0 a.m.51 views

CentOS 6 : ntp (CESA-2016:0780)

An update for ntp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

7.5CVSS7.2AI score0.12282EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2016/05/17 12:0 a.m.47 views

openSUSE: Security Advisory for ntp (openSUSE-SU-2016:1292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.11887EPSS
Exploits4References1
Cent OS
Cent OS
added 2016/05/16 10:19 a.m.89 views

ntp, ntpdate security update

CentOS Errata and Security Advisory CESA-2016:0780 An update for ntp is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS7.2AI score0.12282EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2016/05/16 12:0 a.m.51 views

Oracle Linux 6 : ntp (ELSA-2016-0780)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-0780 advisory. - don't accept server/peer packets with zero origin timestamp CVE-2015-8138 - fix crash with reslist command CVE-2015-7977, CVE-2015-7978 - fix crash...

7.5CVSS6.7AI score0.12282EPSS
Exploits2References12
OPENSUSE Linux
OPENSUSE Linux
added 2016/05/12 9:7 p.m.58 views

Security update for ntp (important)

ntp was updated to version 4.2.8p6 to fix 12 security issues. Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 These security issues were fixed: - CVE-2015-8158: Fixed potential infinite loop in ntpq bsc962966. - CVE-2015-8138: Zero Origin Timestamp Bypass bsc963002....

2.1CVSS7.2AI score0.11887EPSS
Exploits5References20
Tenable Nessus
Tenable Nessus
added 2016/05/12 12:0 a.m.49 views

RHEL 6 : ntp (RHSA-2016:0780)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0780 advisory. The Network Time Protocol NTP is used to synchronize a computer's time with another referenced time source. These packages include the ntpd...

7.5CVSS7.4AI score0.12282EPSS
Exploits0References26
Rows per page
Query Builder