Lucene search
K

27 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2015-8158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service infinite loop via...

5.9CVSS6.6AI score0.07546EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.28 views

Debian: Security Advisory (DLA-559-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7AI score0.15081EPSS
Exploits8References3
F5 Networks
F5 Networks
added 2023/02/21 7:33 p.m.52 views

K01324833: NTP vulnerability CVE-2015-8158

Security Advisory Description The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service infinite loop via crafted packets with incorrect values. CVE-2015-8158 Impact When this vulnerability is exploited, an attacke...

5.9CVSS6.7AI score0.07546EPSS
Exploits0Affected Software23
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2016:1175-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7.1AI score0.11887EPSS
Exploits5References23
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits20References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:1311-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.7AI score0.81762EPSS
Exploits13References39
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:1247-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits13References33
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:30 a.m.49 views

Security Bulletin: IBM Pure Power Integrated Manager (PPIM) is affected by multiple ntp vulnerabilities

Summary Multiple security vulnerabilities have been discovered in ntp embedded in the IBM PPIM. This bulletin addresses these issues. Vulnerability Details CVEID: CVE-2015-8138 DESCRIPTION: NTP could allow a remote attacker to bypass security restrictions. By sending a specially crafted packet wi...

5.9CVSS7.8AI score0.07546EPSS
Exploits2Affected Software1
OSV
OSV
added 2017/01/30 9:59 p.m.7 views

CVE-2015-8158

The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service infinite loop via crafted packets with incorrect values...

5.9CVSS7.3AI score
Exploits0References12
CVE
CVE
added 2017/01/30 9:0 p.m.183 views

CVE-2015-8158

CVE-2015-8158 affects the ntpq utility in NTP. The getresponse() function can be triggered to enter an infinite loop by receiving crafted packets with incorrect values, causing a denial of service. This affects NTP versions prior to 4.2.8p9 and 4.3.x prior to 4.3.90. Upstream remediation is to up...

5.9CVSS6.2AI score0.07546EPSS
Exploits0References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/12/22 12:0 a.m.56 views

F5 Networks BIG-IP : NTP vulnerability (K01324833)

The getresponse function in ntpq in NTP versions before 4.2.8p9 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service infinite loop via crafted packets with incorrect values. CVE-2015-8158 C Tenable Network Security, Inc. The descriptive text and package checks in this plug...

5.9CVSS6.8AI score0.07546EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2016/11/09 12:0 a.m.65 views

ntp security and bug fix update

4.2.6p5-25.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-25 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack CVE-2016-1550 4.2.6p5-24 -...

7.7CVSS1.7AI score0.97549EPSS
Exploits31
Palo Alto Networks
Palo Alto Networks
added 2016/08/15 12:0 a.m.170 views

NTP Vulnerabilities

The open source ntp project has been found to contain several vulnerabilities CVE-2015-8158, CVE-2015-8138, CVE-2015-7979, CVE-2015-7978, CVE-2015-7977, CVE-2015-7976, CVE-2015-7975, CVE-2015-7974, CVE-2015-7973, all released in January 2016. Palo Alto...

5.8CVSS1.5AI score0.11887EPSS
Exploits5Affected Software1
Debian
Debian
added 2016/07/25 9:37 p.m.53 views

[SECURITY] [DLA 559-1] ntp security update

Package : ntp Version : 1:4.2.6.p5+dfsg-2+deb7u7 CVE ID : CVE-2015-7974 CVE-2015-7977 CVE-2015-7978 CVE-2015-7979 CVE-2015-8138 CVE-2015-8158 CVE-2016-1547 CVE-2016-1548 CVE-2016-1550 CVE-2016-2516 CVE-2016-2518 Several vulnerabilities were discovered in the Network Time Protocol daemon and utili...

7.7CVSS7.1AI score0.15081EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2016/05/19 12:0 a.m.45 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1311-1)

This network time protocol server ntp was updated to 4.2.8p6 to fix the following issues : Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way. - 'controlkey 1' is added...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References98
OpenVAS
OpenVAS
added 2016/05/17 12:0 a.m.47 views

openSUSE: Security Advisory for ntp (openSUSE-SU-2016:1292-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.3AI score0.11887EPSS
Exploits4References1
OPENSUSE Linux
OPENSUSE Linux
added 2016/05/12 9:7 p.m.58 views

Security update for ntp (important)

ntp was updated to version 4.2.8p6 to fix 12 security issues. Also yast2-ntp-client was updated to match some sntp syntax changes. bsc937837 These security issues were fixed: - CVE-2015-8158: Fixed potential infinite loop in ntpq bsc962966. - CVE-2015-8138: Zero Origin Timestamp Bypass bsc963002....

2.1CVSS7.2AI score0.11887EPSS
Exploits5References20
Tenable Nessus
Tenable Nessus
added 2016/05/09 12:0 a.m.45 views

SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2016:1247-1)

ntp was updated to version 4.2.8p6 to fix 28 security issues. Major functional changes : - The 'sntp' commandline tool changed its option handling in a major way, some options have been renamed or dropped. - 'controlkey 1' is added during update to ntp.conf to allow sntp to work. - The local cloc...

9.8CVSS6.9AI score0.81762EPSS
Exploits13References88
OpenVAS
OpenVAS
added 2016/05/07 12:0 a.m.51 views

SUSE: Security Advisory for ntp (SUSE-SU-2016:1247-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.3AI score0.81762EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2016/05/02 12:0 a.m.43 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2016:1175-1)

ntp was updated to version 4.2.8p6 to fix 12 security issues. These security issues were fixed : - CVE-2015-8158: Fixed potential infinite loop in ntpq bsc962966. - CVE-2015-8138: Zero Origin Timestamp Bypass bsc963002. - CVE-2015-7979: Off-path Denial of Service DoS attack on authenticated...

7.7CVSS6.5AI score0.11887EPSS
Exploits5References45
Rows per page
Query Builder