Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2016-1549

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earli...

6.5CVSS6.2AI score0.03147EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.23 views

RHEL 7 : ntp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ntp: Using port 123 for modes where a fixed port number is not required facilitates off-path attacks...

7.5AI score0.16351EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.27 views

RHEL 6 : ntp (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ntp: Using port 123 for modes where a fixed port number is not required facilitates off-path attacks...

7.3AI score0.16351EPSS
Exploits4References15
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2016:1278-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.15081EPSS
Exploits9References14
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2016:2094-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.81762EPSS
Exploits20References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2018:0956-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.2985EPSS
Exploits6References11
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2016:1568-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.44936EPSS
Exploits9References22
Tenable Nessus
Tenable Nessus
added 2018/10/22 12:0 a.m.38 views

SUSE SLES12 Security Update : ntp (SUSE-SU-2018:1765-2)

This update for ntp fixes the following issues : Update to 4.2.8p11 bsc1082210 : - CVE-2016-1549: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. - CVE-2018-7182: ctlgetitem: buffer read overru...

9.8CVSS7.1AI score0.2985EPSS
Exploits6References21
Tenable Nessus
Tenable Nessus
added 2018/09/20 12:0 a.m.60 views

Amazon Linux AMI : ntp (ALAS-2018-1083)

ntpd in ntp 4.2.x before 4.2.8p7 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an incomplete fix for...

9.8CVSS7.5AI score0.29037EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2018/08/20 12:0 a.m.41 views

Slackware 14.0 / 14.1 / 14.2 / current : ntp (SSA:2018-229-01)

New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-229-01. The text itself is copyright C Slackware Linux,...

9.8CVSS7.5AI score0.29037EPSS
Exploits6References3
Slackware Linux
Slackware Linux
added 2018/08/17 5:43 p.m.52 views

[slackware-security] ntp

New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ntp-4.2.8p12-i586-1slack14.2.txz: Upgraded. This release improves on one security fix in ntpd: LOW/MEDIUM: Sec 3012: Sybil...

9.8CVSS0.2AI score0.29037EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2018/08/17 12:0 a.m.159 views

Network Time Protocol Daemon (ntpd) 4.x < 4.2.8p12 / 4.3.x < 4.3.94 Multiple Vulnerabilities

The version of the remote NTP server is 4.x prior to 4.2.8p12, or is 4.3.x prior to 4.3.94. It is, therefore, affected by the following vulnerabilities: - A race condition exists that is triggered during the handling of a saturation of ephemeral associations. An authenticated, remote attacker can...

9.8CVSS7.8AI score0.29037EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2018/06/21 12:0 a.m.85 views

SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2018:1765-1)

This update for ntp fixes the following issues : - Update to 4.2.8p11 bsc1082210 : - CVE-2016-1549: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. - CVE-2018-7182: ctlgetitem: buffer read...

9.8CVSS7.1AI score0.2985EPSS
Exploits6References21
Tenable Nessus
Tenable Nessus
added 2018/05/30 12:0 a.m.38 views

SUSE SLES12 Security Update : ntp (SUSE-SU-2018:1464-1)

This update for ntp fixes the following issues : - Update to 4.2.8p11 bsc1082210 : - CVE-2016-1549: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. - CVE-2018-7182: ctlgetitem: buffer read...

9.8CVSS7.1AI score0.2985EPSS
Exploits6References22
Amazon
Amazon
added 2018/05/10 12:0 a.m.64 views

Medium: ntp

Issue Overview: The monlist feature in ntprequest.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service traffic amplification via forged 1 REQMONGETLIST or 2 REQMONGETLIST1 requests, as exploited in the wild in December 2013. CVE-2013-5211 A malicious authenticated...

9.8CVSS7.8AI score0.97549EPSS
Exploits29
Tenable Nessus
Tenable Nessus
added 2018/04/18 12:0 a.m.44 views

openSUSE Security Update : ntp (openSUSE-2018-376)

This update for ntp fixes the following issues : - Update to 4.2.8p11 bsc1082210 : - CVE-2016-1549: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. - CVE-2018-7182: ctlgetitem: buffer read...

9.8CVSS7AI score0.2985EPSS
Exploits6References14
Tenable Nessus
Tenable Nessus
added 2018/04/17 12:0 a.m.43 views

SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2018:0956-1)

This update for ntp fixes the following issues : - Update to 4.2.8p11 bsc1082210 : - CVE-2016-1549: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. - CVE-2018-7182: ctlgetitem: buffer read...

9.8CVSS7.1AI score0.2985EPSS
Exploits6References21
OpenVAS
OpenVAS
added 2018/03/28 12:0 a.m.50 views

Fedora Update for ntp FEDORA-2018-de113aeac6

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.2985EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.51 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2018:0808-1)

This update for ntp fixes the following issues: Security issues fixed : - CVE-2016-1549: Significant additional protections against CVE-2016-1549 that was fixed in ntp-4.2.8p7 bsc1082210. - CVE-2018-7170: Ephemeral association time spoofing additional protection bsc1083424. - CVE-2018-7182: Buffe...

9.8CVSS6.8AI score0.2985EPSS
Exploits6References20
OSV
OSV
added 2018/03/26 9:50 a.m.10 views

SUSE-SU-2018:0808-1 Security update for ntp

This update for ntp fixes the following issues: Security issues fixed: - CVE-2016-1549: Significant additional protections against CVE-2016-1549 that was fixed in ntp-4.2.8p7 bsc1082210. - CVE-2018-7170: Ephemeral association time spoofing additional protection bsc1083424. - CVE-2018-7182: Buffer...

9.8CVSS7.9AI score0.2985EPSS
Exploits6References14
Rows per page
Query Builder