Lucene search
K

15 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:9 p.m.44 views

K32262483: NTP vulnerability CVE-2017-6451

Security Advisory Description The mx4200send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an...

7.8CVSS8.3AI score0.00481EPSS
Exploits0Affected Software23
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2017-0134)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.06515EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2017:1048-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.06515EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2018/08/17 12:0 a.m.419 views

Photon OS 1.0: Binutils / Libarchive / Ntp PHSA-2017-0010 (deprecated)

An update of binutils,ntp,libarchive packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0010. The text itself is copyright C VMwar...

9.8CVSS7AI score0.06515EPSS
Exploits10References24
Tenable Nessus
Tenable Nessus
added 2017/12/21 12:0 a.m.35 views

F5 Networks BIG-IP : NTP vulnerability (K32262483)

The mx4200send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write...

7.8CVSS7.7AI score0.00481EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/08/03 12:0 a.m.193 views

AIX NTP v3 Advisory : ntp_advisory9.asc (IV96305) (IV96306) (IV96307) (IV96308) (IV96309) (IV96310)

The version of NTP installed on the remote AIX host is affected by the following vulnerabilities : - An out-of-bounds write error exists in the mx4200send function within file ntpd/refclockmx4200.c due to improper handling of the return value of the snprintf and vsnprintf functions. An...

8.8CVSS8AI score0.06515EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.40 views

Fedora 26 : ntp (2017-20d54b2782)

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451 CVE-2017-6460 CVE-2016-9042. ---- This update improves the default configuration file to use the pool directive. It also replaces the ntpstat program with a shell script that uses the ntpq program instead of...

8.8CVSS6.3AI score0.06515EPSS
Exploits2References8
IBM AIX
IBM AIX
added 2017/07/06 2:53 p.m.920 views

There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX,There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX.,There are multiple vulnerabilities in NTPv3 and NTPv4 that impact VIOS

IBM SECURITY ADVISORY First Issued: Thu Jul 6 14:53:51 CDT 2017 |Updated: Mon Nov 13 14:32:25 CST 2017 |Update 3: Clarified that AIX 7100-04-05, 7200-00-05, and 7200-01-03 are | impacted. An additional iFix is provided for AIX 7100-04-05. The | iFixes already provided for 7200-00 and 7200-01 cove...

8.8CVSS8.7AI score0.06515EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/04/21 12:0 a.m.45 views

Amazon Linux AMI : ntp (ALAS-2017-816)

Denial of Service via Malformed Config : A vulnerability was discovered in the NTP server's parsing of configuration directives. A remote, authenticated attacker could cause ntpd to crash by sending a crafted message.CVE-2017-6464 Potential Overflows in ctlput functions : A vulnerability was foun...

8.8CVSS7.1AI score0.06515EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/04/19 12:0 a.m.47 views

Fedora 24 : ntp (2017-72323a442f)

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

8.8CVSS7AI score0.06515EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/04/19 12:0 a.m.50 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2017:1052-1)

This ntp update to version 4.2.8p10 fixes the following issues: Security issues fixed bsc1030050 : - CVE-2017-6464: Denial of Service via Malformed Config - CVE-2017-6462: Buffer Overflow in DPTS Clock - CVE-2017-6463: Authenticated DoS via Malicious Config Option - CVE-2017-6458: Potential...

8.8CVSS6.3AI score0.06515EPSS
Exploits2References18
Tenable Nessus
Tenable Nessus
added 2017/03/30 12:0 a.m.34 views

Fedora 25 : ntp (2017-5ebac1c112)

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

8.8CVSS7AI score0.06515EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2017/03/29 12:0 a.m.35 views

Fedora Update for ntp FEDORA-2017-5ebac1c112

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.06515EPSS
Exploits0References2
NVD
NVD
added 2017/03/27 5:59 p.m.25 views

CVE-2017-6451

The mx4200send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write...

7.8CVSS7.9AI score0.00481EPSS
Exploits0References7
CVE
CVE
added 2017/03/27 5:0 p.m.123 views

CVE-2017-6451

CVE-2017-6451 affects the NTP legacy MX4200 refclock. The mx4200_send function mishandles the return value of snprintf, enabling a local attacker to trigger an out-of-bounds write and potentially execute arbitrary code. Affected: NTP before 4.2.8p10 and 4.3.x before 4.3.94. Mitigation/remediation...

7.8CVSS8.2AI score0.00481EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder