6 matches found
NTP < 4.2.7p42 DoS Vulnerability
NTP is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ntp:ntp"; ifdescription...
NTP < 4.2 DoS Vulnerability
Buffer overflow in ntpd ntp daemon 4.0.99k and earlier aka xntpd and xntp3 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long readvar argument. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a reference...
CVE-2018-7184
ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service disruption by sending a packet with a zero-origin timestamp causing the association to reset and setting the contents of the packet as the mos...
NTP.org 'ntpd' Insufficient Entropy Security Weakness Brute Force Attack Vulnerability
NTP.org SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ntp:ntp"; ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.809781";...
DEBIAN-CVE-2015-1798
The symmetric-key feature in the receive function in ntpproto.c in ntpd in NTP 4.x before 4.2.8p2 requires a correct MAC only if the MAC field has a nonzero length, which makes it easier for man-in-the-middle attackers to spoof packets by omitting the MAC...
NTP service vulnerable to internal overflow if date / time offset is greater than 34 years
Overview NTP Network TIme Protocol contains an integer overflow vulnerability that may lead to clients receiving an incorrect date/time offset. Description NTP Network Time Protocol is a method by which client machines can synchronize the local date and time with a reference server. The server wi...