Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2018/06/21 12:0 a.m.85 views

SUSE SLED12 / SLES12 Security Update : ntp (SUSE-SU-2018:1765-1)

This update for ntp fixes the following issues : - Update to 4.2.8p11 bsc1082210 : - CVE-2016-1549: Sybil vulnerability: ephemeral association attack. While fixed in ntp-4.2.8p7, there are significant additional protections for this issue in 4.2.8p11. - CVE-2018-7182: ctlgetitem: buffer read...

9.8CVSS7.1AI score0.2985EPSS
Exploits6References21
Slackware Linux
Slackware Linux
added 2018/03/01 11:49 p.m.57 views

[slackware-security] ntp

New ntp packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/ntp-4.2.8p11-i586-1slack14.2.txz: Upgraded. This release addresses five security issues in ntpd: LOW/MEDIUM: Sec 3012 /...

7.5CVSS8AI score0.2985EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2018/02/28 12:0 a.m.58 views

FreeBSD : ntp -- multiple vulnerabilities (af485ef4-1c58-11e8-8477-d05099c0ae8c)

Network Time Foundation reports : The NTP Project at Network Time Foundation is releasing ntp-4.2.8p11. This release addresses five security issues in ntpd : - LOW/MEDIUM: Sec 3012 / CVE-2016-1549 / VU961909: Sybil vulnerability: ephemeral association attack - INFO/MEDIUM: Sec 3412 / CVE-2018-718...

9.8CVSS7AI score0.2985EPSS
Exploits6References8
FreeBSD
FreeBSD
added 2018/02/27 12:0 a.m.65 views

ntp -- multiple vulnerabilities

Network Time Foundation reports: The NTP Project at Network Time Foundation is releasing ntp-4.2.8p11. This release addresses five security issues in ntpd: LOW/MEDIUM: Sec 3012 / CVE-2016-1549 / VU961909: Sybil vulnerability: ephemeral association attack INFO/MEDIUM: Sec 3412 / CVE-2018-7182 /...

9.8CVSS8.1AI score0.2985EPSS
Exploits6References1
RedHat Linux
RedHat Linux
added 2016/08/03 7:43 a.m.7 views

ntp: ntpd switching to interleaved mode with spoofed packets

It was found that an ntpd client could be forced to change from basic client/server mode to the interleaved symmetric mode. A remote attacker could use a spoofed packet that, when processed by an ntpd client, would cause that client to reject all future legitimate server responses, effectively...

7.2CVSS7.1AI score0.03844EPSS
Exploits3References6
Amazon
Amazon
added 2016/06/02 12:0 a.m.62 views

Medium: ntp

Issue Overview: It was found that an ntpd client could be forced to change from basic client/server mode to the interleaved symmetric mode. A remote attacker could use a spoofed packet that, when processed by an ntpd client, would cause that client to reject all future legitimate server responses...

7.2CVSS7AI score0.15081EPSS
Exploits4
Oracle linux
Oracle linux
added 2016/05/31 12:0 a.m.48 views

ntp security update

4.2.6p5-10.el68.1 - don't allow spoofed packets to demobilize associations CVE-2015-7979, CVE-2016-1547 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack...

6.4CVSS3.3AI score0.15081EPSS
Exploits6
CNVD
CNVD
added 2016/04/30 12:0 a.m.2 views

ntpd system time modification vulnerability (CNVD-2016-02740)

ntpd is an operating system daemon that uses the Network Time Protocol to keep synchronized with the system time of a time server. A security vulnerability in ntpd allows a remote attacker to modify a client's system time by forging packets and changing the basic client/server mode to an...

7.2CVSS7.2AI score0.03844EPSS
Exploits3References1
Rows per page
Query Builder