Lucene search
K

6 matches found

UbuntuCve
UbuntuCve
added 2018/03/06 12:0 a.m.28 views

CVE-2018-7182

The ctlgetitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service out-of-bounds read via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10...

7.5CVSS6.8AI score0.2985EPSS
Exploits5References4
RedhatCVE
RedhatCVE
added 2018/02/28 8:18 p.m.28 views

CVE-2018-7183

Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 through 4.2.8p10 allows remote attackers to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array...

9.8CVSS7.2AI score0.10777EPSS
Exploits0References1
seebug.org
seebug.org
added 2017/10/11 12:0 a.m.146 views

Network Time Protocol Broadcast Mode Replay Prevention Denial of Service Vulnerability(CVE-2016-7427)

Summary An exploitable denial of service vulnerability exists in the broadcast mode replay prevention functionality of ntpd. To prevent replay of broadcast mode packets, ntpd rejects broadcast mode packets with non-monotonically increasing transmit timestamps. Remote unauthenticated attackers can...

5.8CVSS7.1AI score0.03907EPSS
Exploits2
Broadcom
Broadcom
added 2017/03/31 12:0 a.m.16 views

BSA-2017-223

Security Advisory ID : BSA-2017-223 Component : ntp Revision : 1.0: Interim Zero Origin timestamp problems were fixed by Bug 2945 in ntp-4.2.8p6. However, subsequent timestamp validation checks introduced a regression in the handling of some Zero origin timestamp checks. Affected Products Product...

5.3CVSS7.8AI score0.0864EPSS
Exploits1
OSV
OSV
added 2017/01/30 9:59 p.m.2 views

DEBIAN-CVE-2015-7978

NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a denial of service stack exhaustion via an ntpdc relist command, which triggers recursive traversal of the restriction list...

7.5CVSS6.9AI score0.09905EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2016/01/20 12:0 a.m.79 views

ntp -- multiple vulnerabilities

Network Time Foundation reports: NTF's NTP Project has been notified of the following low- and medium-severity vulnerabilities that are fixed in ntp-4.2.8p6, released on Tuesday, 19 January 2016: Bug 2948 / CVE-2015-8158: Potential Infinite Loop in ntpq. Reported by Cisco ASIG. Bug 2945 /...

7.7CVSS7.2AI score0.11887EPSS
Exploits5References1
Rows per page
Query Builder