Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:17390
HistoryMay 02, 2019 - 5:41 a.m.

Sensitive Information Leak

2019-05-0205:41:07
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
12

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

JSON

ntp is vulnerable to sensitive information disclosure. It is possible due to missing validation of vallen value in ntp_crypto.c when the decryption of a secret received from an NTP server is performed, leading to a stack-based buffer overflow and crashing the NTP client.

References

Related

prion 6
debiancve 4
cve 6
osv 4
veracode 3
ibm 4
nessus 25
f5 3
ubuntucve 4
openvas 16
redhat 4
centos 4
oraclelinux 1
amazon 1
freebsd_advisory 1
debian 2
slackware 1
prion
prion
Authentication flaw
2015-10-06 01:59:00
Code injection
2017-08-07 20:29:00
Code injection
2017-08-07 20:29:00
debiancve
debiancve
CVE-2014-9750
2015-10-06 01:59:00
CVE-2015-7691
2017-08-07 20:29:00
CVE-2015-7702
2017-08-07 20:29:00
cve
cve
CVE-2014-9750
2015-10-06 01:59:00
CVE-2015-7702
2017-08-07 20:29:00
CVE-2015-7691
2017-08-07 20:29:00
osv
osv
ntp - security update
2015-02-05 00:00:00
ntp - incomplete fix
2015-02-05 00:00:00
ntp - security update
2015-11-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:29:36
Denial Of Service (DoS)
2019-05-02 05:29:36
Denial Of Service (DoS)
2019-05-02 05:29:36
ibm
ibm
Security Bulletin: IBM Pure Power Integrated Manager (PPIM) is affected by vulnerabilities in ntp (CVE-2014-9750, CVE-2014-9751)
2018-06-18 01:30:30
Security Bulletin: Multiple Security Vulnerabilities affecting IBM Netezza Host Management
2019-10-18 03:10:29
Security Bulletin: Vulnerabilities in NTP affect IBM Flex System FC3171 8Gb SAN Switch & SAN Pass-thru Firmware, QLogic 8Gb Intelligent Pass-thru Module & SAN Switch Module and QLogic Virtual Fabric Extension Module for IBM BladeCenter
2023-04-14 14:32:25
nessus
nessus
F5 Networks BIG-IP : NTP vulnerability (SOL16392)
2015-09-16 00:00:00
Debian DSA-3154-1 : ntp - security update
2015-02-06 00:00:00
F5 Networks BIG-IP : NTP vulnerabilities (K17530)
2015-11-06 00:00:00
f5
f5
K16392 : NTP vulnerability CVE-2014-9750
2015-11-07 00:00:00
SOL16392 - NTP vulnerability CVE-2014-9750
2015-04-09 00:00:00
K17530 : NTP vulnerabilities CVE-2015-7691, CVE-2015-7692, and CVE-2015-7702
2015-11-05 00:00:00
ubuntucve
ubuntucve
CVE-2014-9750
2015-10-06 00:00:00
CVE-2015-7691
2015-10-22 00:00:00
CVE-2015-7692
2015-10-22 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-3154-2)
2015-02-04 00:00:00
NTP.org 'ntpd' Multiple Vulnerabilities
2017-01-05 00:00:00
Debian: Security Advisory (DLA-149-1)
2023-03-08 00:00:00
redhat
redhat
(RHSA-2015:1459) Moderate: ntp security, bug fix, and enhancement update
2015-07-22 00:00:00
(RHSA-2015:2231) Moderate: ntp security, bug fix, and enhancement update
2015-11-19 14:42:12
(RHSA-2016:0780) Moderate: ntp security and bug fix update
2016-05-10 06:42:20
centos
centos
ntp, ntpdate security update
2015-07-26 14:13:05
ntp, ntpdate, sntp security update
2015-11-30 19:45:44
ntp, ntpdate security update
2016-05-16 10:19:19
oraclelinux
oraclelinux
ntp security, bug fix, and enhancement update
2015-11-23 00:00:00
amazon
amazon
Important: ntp
2015-10-27 16:42:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-15:25.ntp
2015-10-26 00:00:00
debian
debian
[SECURITY] [DLA 335-1] ntp security update
2015-10-28 20:45:22
[SECURITY] [DSA 3388-1] ntp security update
2015-11-01 22:21:19
slackware
slackware
[slackware-security] ntp
2015-10-29 22:49:05

5.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:N/A:P

JSON
Related for VERACODE:17390
prion6debiancve4cve6osv4veracode3ibm4nessus25f53ubuntucve4openvas16redhat4centos4oraclelinux1amazon1freebsd_advisory1debian2slackware1