Lucene search
K

13 matches found

Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.276 views

NTP Mode 7 GET_RESTRICT DRDoS Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Mode 7 GETRESTRICT DRDoS Scanner', 'Description' = %q This module identifies NTP servers which permit "reslist" queries and obtains the list ...

5CVSS6.7AI score0.97549EPSS
Exploits23
SUSE CVE
SUSE CVE
added 2023/02/15 4:48 a.m.3 views

SUSE CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

8.8CVSS10AI score0.02682EPSS
Exploits0References8
Veracode
Veracode
added 2019/05/02 5:29 a.m.25 views

Denial Of Service (DoS)

ntp is vulnerable to denial of service. A NULL pointer dereference flaw was found in the way ntpd processed ntpdc reslist commands that queried restriction lists with a large amount of entries. A remote attacker could potentially use this flaw to crash ntpd...

5.9CVSS6.3AI score0.06295EPSS
Exploits0References32Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/04/19 12:0 a.m.44 views

SUSE SLES12 Security Update : ntp (SUSE-SU-2017:1047-1)

This ntp update to version 4.2.8p10 fixes serveral issues. This updated enables leap smearing. See /usr/share/doc/packages/ntp/README.leapsmear for details. Security issues fixed bsc1030050 : - CVE-2017-6464: Denial of Service via Malformed Config - CVE-2017-6462: Buffer Overflow in DPTS Clock -...

8.8CVSS6.4AI score0.06515EPSS
Exploits2References17
Prion
Prion
added 2017/03/27 5:59 p.m.18 views

Stack overflow

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

6.5CVSS8.9AI score0.02682EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2017/03/27 5:59 p.m.1 views

DEBIAN-CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

8.8CVSS7.8AI score0.02682EPSS
Exploits0References1
NVD
NVD
added 2017/03/27 5:59 p.m.13 views

CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

8.8CVSS9.2AI score0.02682EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2017/03/27 5:0 p.m.23 views

CVE-2017-6460

Stack-based buffer overflow in the reslist function in ntpq in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response...

8.8CVSS9.2AI score0.02682EPSS
Exploits0
Prion
Prion
added 2017/01/30 9:59 p.m.28 views

Null pointer dereference

ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command...

4.3CVSS6.9AI score0.06295EPSS
Exploits0References27Affected Software6
OSV
OSV
added 2017/01/30 9:59 p.m.0 views

DEBIAN-CVE-2015-7977

ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command...

5.9CVSS6.8AI score0.06295EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2016/05/12 12:0 a.m.74 views

ntp security and bug fix update

4.2.6p5-10 - don't accept server/peer packets with zero origin timestamp CVE-2015-8138 - fix crash with reslist command CVE-2015-7977, CVE-2015-7978 4.2.6p5-9 - fix crash with invalid logconfig command CVE-2015-5194 - fix crash when referencing disabled statistic type CVE-2015-5195 - don't hang i...

5CVSS0.9AI score0.12282EPSS
Exploits2
OSV
OSV
added 2015/12/31 12:0 a.m.3 views

UBUNTU-CVE-2015-7977

ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command...

5.9CVSS6.9AI score0.06295EPSS
Exploits0References5
Metasploit
Metasploit
added 2014/08/09 4:0 a.m.61 views

NTP Mode 7 GET_RESTRICT DRDoS Scanner

This module identifies NTP servers which permit "reslist" queries and obtains the list of restrictions placed on various network interfaces, networks or hosts. The reslist feature allows remote attackers to cause a distributed, reflected denial of service aka, "DRDoS" or traffic amplification via...

5CVSS6.9AI score0.97549EPSS
Exploits23
Rows per page
Query Builder