7 matches found
EUVD-2019-3012
Malware in sbrugna...
K09940637: NTP vulnerability CVE-2019-11331
Security Advisory Description Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks. CVE-2019-11331 Impact Using an off-path attack not a man-in-the-middle...
CVE-2019-11331
Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks. Mitigation On Red Hat Enterprise Linux 6 and later, switching from ntp to chrony is recommended. Amo...
CVE-2019-11331
Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks...
Path traversal
Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks...
CVE-2019-11331
CVE-2019-11331 concerns Network Time Protocol (NTP) implementations that use port 123 even when a fixed port isn’t required (per RFC 5905). The provided documents confirm an off‑path attack possibility due to port usage, describing it as enabling remote actors to conduct off‑path attacks against ...
CVE-2019-11331
Network Time Protocol NTP, as specified in RFC 5905, uses port 123 even for modes where a fixed port number is not required, which makes it easier for remote attackers to conduct off-path attacks...