SUSE CVE-2009-3563

🗓️ 15 Feb 2023 06:02:19Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 2 Views

ntpd vulnerability before 4.2.4p8 and 4.2.5 enables remote denial of service via MODE_PRIVATE spoofed packets.

Reporter	Title	Published	Views	Family All 149
Tenable Nessus	AIX 5.3 TL 8 : xntpd (IZ68659)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 4 : xntpd (IZ71071)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 9 : xntpd (IZ71093)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 10 : xntpd (IZ71608)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 11 : xntpd (IZ71610)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 1 : xntpd (IZ71611)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 2 : xntpd (IZ71613)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 3 : xntpd (IZ71614)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 8 : bos.net.tcp.client (U832257)	19 May 201000:00	–	nessus
Tenable Nessus	CentOS 4 / 5 : ntp (CESA-2009:1648)	9 Dec 200900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
SUSE Linux Enterprise Server	11	any	ntp	4.2.4p6-1.18.1	ntp-4.2.4p6-1.18.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11	any	ntp	4.2.4p6-1.18.1	ntp-4.2.4p6-1.18.1.noarch.rpm
SUSE Linux Enterprise Server	11	any	ntp-doc	4.2.4p6-1.18.1	ntp-doc-4.2.4p6-1.18.1.noarch.rpm
SUSE Linux Enterprise Server for SAP applications	11	any	ntp-doc	4.2.4p6-1.18.1	ntp-doc-4.2.4p6-1.18.1.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2009-3563
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/550316
lists	www.lists.opensuse.org/archives/list/[email protected]/thread/TQKKCXCCJNXZGT3RQKVHND7NFINIQDSH/

25 Apr 2025 14:16Current

6.9Medium risk

Vulners AI Score6.9

CVSS 26.4

EPSS0.32288

network time protocol denial of service mode private spoofed requests spoofed responses vulnerability