Lucene search
K

142 matches found

Palo Alto Networks
Palo Alto Networks
added 2017/05/23 3:0 a.m.568 views

Kernel Vulnerability

A vulnerability exists in the kernel of PAN-OS that may result in Information Disclosure. The challenge ACK rate limiting in the kernel's networking subsystem may allow an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rat...

2.1AI score0.15073EPSS
Exploits3References1Affected Software1
NVD
NVD
added 2017/01/06 9:59 p.m.28 views

CVE-2016-1547

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

5.3CVSS6.3AI score0.0511EPSS
Exploits2References15
Prion
Prion
added 2017/01/06 9:59 p.m.25 views

Authentication flaw

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

5CVSS7.4AI score0.0511EPSS
Exploits2References15Affected Software1
OSV
OSV
added 2017/01/06 9:59 p.m.11 views

CVE-2016-1547

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

5.3CVSS6.3AI score
Exploits0References15
OSV
OSV
added 2017/01/06 9:59 p.m.1 views

DEBIAN-CVE-2016-1547

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

5.3CVSS7AI score0.0511EPSS
Exploits2References1
CVE
CVE
added 2017/01/06 9:0 p.m.233 views

CVE-2016-1547

CVE-2016-1547 describes a denial-of-service vulnerability in ntpd where handling of crypto NAK packets can demobilize a preemptable client association. An off-path attacker can spoof a peer’s source and force the victim to drop synchronization, even with authentication enabled. The issue affects ...

5.3CVSS6.3AI score0.0511EPSS
Exploits2References15Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/12/21 12:0 a.m.68 views

F5 Networks BIG-IP : NTP vulnerability (K11251130)

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

7.5CVSS6.8AI score0.11887EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2016/09/06 10:17 a.m.7 views

kernel: challenge ACK counter information disclosure.

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS6.6AI score0.15073EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2016/08/23 6:34 p.m.5 views

kernel: challenge ACK counter information disclosure.

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS6.6AI score0.15073EPSS
Exploits3References5
RedHat Linux
RedHat Linux
added 2016/08/23 4:11 p.m.5 views

kernel: challenge ACK counter information disclosure.

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS6.6AI score0.15073EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2016/08/22 12:0 a.m.64 views

Scientific Linux Security Update : kernel on SL7.x x86_64 (20160818)

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS6.9AI score0.15073EPSS
Exploits3References2
Cent OS
Cent OS
added 2016/08/20 2:0 a.m.88 views

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2016:1633 An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.8CVSS6.8AI score0.15073EPSS
Exploits3References7
OpenVAS
OpenVAS
added 2016/08/20 12:0 a.m.42 views

CentOS Update for kernel CESA-2016:1633 centos7

Check the version of kernel SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882546";...

5.8CVSS6.8AI score0.15073EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2016/08/19 12:0 a.m.47 views

RHEL 6 : MRG (RHSA-2016:1631)

An update for kernel-rt is now available for Red Hat Enterprise MRG 2.5. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

5.8CVSS6.9AI score0.15073EPSS
Exploits3References3
RedHat Linux
RedHat Linux
added 2016/08/18 8:6 p.m.112 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.8CVSS6.8AI score0.15073EPSS
Exploits3References2
RedHat Linux
RedHat Linux
added 2016/08/18 8:6 p.m.5 views

kernel: challenge ACK counter information disclosure.

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS6.6AI score0.15073EPSS
Exploits3References5
RedhatCVE
RedhatCVE
added 2016/07/12 8:48 a.m.63 views

CVE-2016-5696

It was found that the RFC 5961 challenge ACK rate limiting as implemented in the Linux kernel's networking subsystem allowed an off-path attacker to leak certain information about a given connection by creating congestion on the global challenge ACK rate limit counter and then measuring the chang...

5.8CVSS1.1AI score0.15073EPSS
Exploits3References2
UbuntuCve
UbuntuCve
added 2016/04/29 12:0 a.m.33 views

CVE-2016-1547

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

5.3CVSS6.8AI score0.0511EPSS
Exploits2References3
OSV
OSV
added 2016/04/29 12:0 a.m.3 views

UBUNTU-CVE-2016-1547

An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a victim client with a spoofed source address of an existing associated peer. This is true even if...

5.3CVSS6.8AI score0.0511EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2016/04/28 12:0 a.m.5 views

PT-2016-4855 · Ntp +8 · Ntp +8

Name of the Vulnerable Software and Affected Versions: NTP versions 4.2.8p4 and earlier NTPSec version a5fb34b9cc89b92a8fef2f459004865c93bb7f92 Description: An off-path attacker can cause a preemptible client association to be demobilized by sending a crypto NAK packet to a victim client with a...

9.8CVSS6.7AI score0.97549EPSS
Exploits59References240
Rows per page
Query Builder