USN-867-1: Ntp vulnerability

🗓️ 08 Dec 2009 22:06:50Reported by UbuntuType

ubuntu

ubuntu🔗 ubuntu.com👁 63 Views

Ntp vulnerability in Ubuntu 6.06 to 9.10

Reporter	Title	Published	Views	Family All 144
Tenable Nessus	AIX 5.3 TL 8 : xntpd (IZ68659)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 4 : xntpd (IZ71071)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 9 : xntpd (IZ71093)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 10 : xntpd (IZ71608)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 11 : xntpd (IZ71610)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 1 : xntpd (IZ71611)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 2 : xntpd (IZ71613)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 6.1 TL 3 : xntpd (IZ71614)	24 Jan 201300:00	–	nessus
Tenable Nessus	AIX 5.3 TL 8 : bos.net.tcp.client (U832257)	19 May 201000:00	–	nessus
Tenable Nessus	CentOS 4 / 5 : ntp (CESA-2009:1648)	9 Dec 200900:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Ubuntu	8.04	any	ntp	1:4.2.4p4+dfsg-3ubuntu2.3	ntp_1:4.2.4p4+dfsg-3ubuntu2.3_any.deb
Ubuntu	8.10	any	ntp	1:4.2.4p4+dfsg-6ubuntu2.4	ntp_1:4.2.4p4+dfsg-6ubuntu2.4_any.deb
Ubuntu	9.04	any	ntp	1:4.2.4p4+dfsg-7ubuntu5.2	ntp_1:4.2.4p4+dfsg-7ubuntu5.2_any.deb
Ubuntu	9.10	any	ntp	1:4.2.4p6+dfsg-1ubuntu5.1	ntp_1:4.2.4p6+dfsg-1ubuntu5.1_any.deb
Ubuntu	6.06	any	ntp-server	1:4.2.0a+stable-8.1ubuntu6.3	ntp-server_1:4.2.0a+stable-8.1ubuntu6.3_any.deb

08 Dec 2009 22:06Current

7.4High risk

Vulners AI Score7.4

CVSS 26.4

EPSS0.81107

ntp vulnerability ubuntu 6.06 9.10 ntpd logic error ntp mode 7 denial of service cpu disk resource consumption remote attacker spoofed ip address