Lucene search
K

15 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.43 views

K99254031: NTP vulnerability CVE-2017-6458

Security Advisory Description Multiple buffer overflows in the ctlput functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable. CVE-2017-6458 Impact This vulnerability allows remote authenticated users to have an...

8.8CVSS7.8AI score0.06515EPSS
Exploits0Affected Software23
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.28 views

Mageia: Security Advisory (MGASA-2017-0134)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.2AI score0.06515EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2017:1048-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.06515EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2017/08/03 12:0 a.m.193 views

AIX NTP v3 Advisory : ntp_advisory9.asc (IV96305) (IV96306) (IV96307) (IV96308) (IV96309) (IV96310)

The version of NTP installed on the remote AIX host is affected by the following vulnerabilities : - An out-of-bounds write error exists in the mx4200send function within file ntpd/refclockmx4200.c due to improper handling of the return value of the snprintf and vsnprintf functions. An...

8.8CVSS8AI score0.06515EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2017/08/03 12:0 a.m.91 views

AIX NTP v4 Advisory : ntp_advisory9.asc (IV96311) (IV96312)

The version of NTP installed on the remote AIX host is affected by the following vulnerabilities : - Multiple stack-based buffer overflow conditions exist in various wrappers around the ctlputdata function within file ntpd/ntpcontrol.c due to improper validation of certain input from the ntp.conf...

8.8CVSS7.9AI score0.06515EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.40 views

Fedora 26 : ntp (2017-20d54b2782)

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451 CVE-2017-6460 CVE-2016-9042. ---- This update improves the default configuration file to use the pool directive. It also replaces the ntpstat program with a shell script that uses the ntpq program instead of...

8.8CVSS6.3AI score0.06515EPSS
Exploits2References8
IBM AIX
IBM AIX
added 2017/07/06 2:53 p.m.920 views

There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX,There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX.,There are multiple vulnerabilities in NTPv3 and NTPv4 that impact VIOS

IBM SECURITY ADVISORY First Issued: Thu Jul 6 14:53:51 CDT 2017 |Updated: Mon Nov 13 14:32:25 CST 2017 |Update 3: Clarified that AIX 7100-04-05, 7200-00-05, and 7200-01-03 are | impacted. An additional iFix is provided for AIX 7100-04-05. The | iFixes already provided for 7200-00 and 7200-01 cove...

8.8CVSS8.7AI score0.06515EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/07/06 12:0 a.m.319 views

Ubuntu 14.04 LTS / 16.04 LTS : NTP vulnerabilities (USN-3349-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3349-1 advisory. Yihan Lian discovered that NTP incorrectly handled certain large request data values. A remote attacker could possibly use this issue to caus...

8.8CVSS6.8AI score0.52935EPSS
Exploits13References17
Ubuntu
Ubuntu
added 2017/07/05 6:19 p.m.76 views

USN-3349-1: NTP vulnerabilities

Yihan Lian discovered that NTP incorrectly handled certain large request data values. A remote attacker could possibly use this issue to cause NTP to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. CVE-2016-2519 Miroslav Lichvar discovered that NTP incorrectly...

8.8CVSS6.8AI score0.52935EPSS
Exploits13
Tenable Nessus
Tenable Nessus
added 2017/04/21 12:0 a.m.45 views

Amazon Linux AMI : ntp (ALAS-2017-816)

Denial of Service via Malformed Config : A vulnerability was discovered in the NTP server's parsing of configuration directives. A remote, authenticated attacker could cause ntpd to crash by sending a crafted message.CVE-2017-6464 Potential Overflows in ctlput functions : A vulnerability was foun...

8.8CVSS7.1AI score0.06515EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/04/19 12:0 a.m.47 views

Fedora 24 : ntp (2017-72323a442f)

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

8.8CVSS7AI score0.06515EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2017/04/19 12:0 a.m.50 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2017:1052-1)

This ntp update to version 4.2.8p10 fixes the following issues: Security issues fixed bsc1030050 : - CVE-2017-6464: Denial of Service via Malformed Config - CVE-2017-6462: Buffer Overflow in DPTS Clock - CVE-2017-6463: Authenticated DoS via Malicious Config Option - CVE-2017-6458: Potential...

8.8CVSS6.3AI score0.06515EPSS
Exploits2References18
Tenable Nessus
Tenable Nessus
added 2017/03/30 12:0 a.m.34 views

Fedora 25 : ntp (2017-5ebac1c112)

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible...

8.8CVSS7AI score0.06515EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2017/03/29 12:0 a.m.35 views

Fedora Update for ntp FEDORA-2017-5ebac1c112

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.06515EPSS
Exploits0References2
CVE
CVE
added 2017/03/27 5:0 p.m.412 views

CVE-2017-6458

CVE-2017-6458 affects NTP where multiple buffer overflows in the ctl_put* functions exist in versions before 4.2.8p10 and 4.3.x before 4.3.94. An authenticated remote attacker could exploit these issues to crash the ntpd process or cause unspecified impact via a long variable. The available sourc...

8.8CVSS8.5AI score0.06515EPSS
Exploits0References20Affected Software1
Rows per page
Query Builder