Lucene search
K

15 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:9 p.m.34 views

K31310492: NTP vulnerability CVE-2017-6460

Security Advisory Description Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response. CVE-2017-6460 Impact Allows remote servers to have...

8.8CVSS9.2AI score0.02682EPSS
Exploits0Affected Software5
SUSE CVE
SUSE CVE
added 2023/02/15 4:48 a.m.3 views

SUSE CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

8.8CVSS10AI score0.02682EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2017/12/21 12:0 a.m.28 views

F5 Networks BIG-IP : NTP vulnerability (K31310492)

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response. CVE-2017-6460 C Tenable Network Security, Inc. The descriptive text and package chec...

8.8CVSS8.2AI score0.02682EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2017/09/14 12:0 a.m.68 views

Palo Alto Networks PAN-OS 6.1.x / 7.0.x < 7.0.18 / 7.1.x < 7.1.12 / 8.0.x < 8.0.4 Network Time Protocol Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 6.1.x, 7.0.x prior to 7.0.18, 7.1.x prior to 7.1.12, or 8.0.x prior to 8.0.4. It is, therefore, affected by a vulnerability in the reslist function in ntpq/ntpq-subs.c. An attacker can cause a stack-based buffer overflow to...

8.8CVSS7.8AI score0.02682EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2017/07/28 12:0 a.m.117 views

Palo Alto PAN-OS NTP Vulnerabilities

The Network Time Protocol NTP library has been found to contains two vulnerabilities CVE-2016-9042 and CVE-2017-6460. Palo Alto Networks software makes use of the vulnerable library and may be affected. This issue only affects the management plane of the firewall. SPDX-FileCopyrightText: 2017...

8.8CVSS6.2AI score0.0396EPSS
Exploits2References1
Palo Alto Networks
Palo Alto Networks
added 2017/07/27 5:15 p.m.6 views

NTP Vulnerability

The Network Time Protocol NTP library has been found to contain a vulnerability CVE-2017-6460. Palo Alto Networks software makes use of the vulnerable library and may be affected. This issue only affects the management plane of the firewall. Ref PAN-76130 / CVE-2017-6460 Successful exploitation o...

8.8CVSS7AI score0.02682EPSS
Exploits0References1
Palo Alto Networks
Palo Alto Networks
added 2017/07/27 5:15 p.m.614 views

NTP Vulnerability

The Network Time Protocol NTP library has been found to contain a vulnerability CVE-2017-6460. Palo Alto Networks software makes use of the vulnerable library and may be affected. This issue only affects the management plane of the firewall. Ref PAN-76130 / CVE-2017-6460 Successful exploitation o...

2.2AI score0.02682EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/07/17 12:0 a.m.40 views

Fedora 26 : ntp (2017-20d54b2782)

Security fix for CVE-2017-6464 CVE-2017-6462 CVE-2017-6463 CVE-2017-6458 CVE-2017-6451 CVE-2017-6460 CVE-2016-9042. ---- This update improves the default configuration file to use the pool directive. It also replaces the ntpstat program with a shell script that uses the ntpq program instead of...

8.8CVSS6.3AI score0.06515EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2017/07/06 12:0 a.m.319 views

Ubuntu 14.04 LTS / 16.04 LTS : NTP vulnerabilities (USN-3349-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3349-1 advisory. Yihan Lian discovered that NTP incorrectly handled certain large request data values. A remote attacker could possibly use this issue to caus...

8.8CVSS6.8AI score0.52935EPSS
Exploits13References17
Ubuntu
Ubuntu
added 2017/07/05 6:19 p.m.75 views

USN-3349-1: NTP vulnerabilities

Yihan Lian discovered that NTP incorrectly handled certain large request data values. A remote attacker could possibly use this issue to cause NTP to crash, resulting in a denial of service. This issue only affected Ubuntu 16.04 LTS. CVE-2016-2519 Miroslav Lichvar discovered that NTP incorrectly...

8.8CVSS6.8AI score0.52935EPSS
Exploits13
Tenable Nessus
Tenable Nessus
added 2017/04/19 12:0 a.m.50 views

SUSE SLES11 Security Update : ntp (SUSE-SU-2017:1052-1)

This ntp update to version 4.2.8p10 fixes the following issues: Security issues fixed bsc1030050 : - CVE-2017-6464: Denial of Service via Malformed Config - CVE-2017-6462: Buffer Overflow in DPTS Clock - CVE-2017-6463: Authenticated DoS via Malicious Config Option - CVE-2017-6458: Potential...

8.8CVSS6.3AI score0.06515EPSS
Exploits2References18
NVD
NVD
added 2017/03/27 5:59 p.m.13 views

CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

8.8CVSS9.2AI score0.02682EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2017/03/27 5:0 p.m.22 views

CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

8.8CVSS9.2AI score0.02682EPSS
Exploits0
CVE
CVE
added 2017/03/27 5:0 p.m.98 views

CVE-2017-6460

CVE-2017-6460 affects NTP’s ntpqd/ntpq stack via a stack-based buffer overflow in the reslist handling, caused by a long flagstr in restriction list responses. A remote attacker could crash or destabilize the ntpd/ntpq process. Public documentation and vendor advisories (IBM IMM2/FSM, IBM CMM, F5...

8.8CVSS7.3AI score0.02682EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2017/03/27 5:0 p.m.23 views

CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

7.5AI score0.02682EPSS
Exploits0References7
Rows per page
Query Builder