CVE-2015-8139

Опубликовано: 30 янв. 2017

Источник: debian

EPSS Средний

Описание

ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.

Пакет	Статус	Версия исправления	Релиз	Тип
ntp	fixed	1:4.2.8p7+dfsg-1		package
ntp	no-dsa		jessie	package
ntp	no-dsa		wheezy	package

http://support.ntp.org/bin/view/Main/SecurityNotice#January_2016_NTP_4_2_8p6_Securit
http://support.ntp.org/bin/view/Main/NtpBug2946
Mitigated in 4.2.8p6

EPSS

Процентиль: 97%

0.30064

Средний

CVE-2015-8139

CVSS3: 5.3

ubuntu

около 9 лет назад

ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.

CVE-2015-8139

redhat

около 10 лет назад

ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.

CVE-2015-8139

CVSS3: 5.3

nvd

около 9 лет назад

ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.

GHSA-qmqw-w975-8wjm

CVSS3: 5.3

github

больше 3 лет назад

ntpq in NTP before 4.2.8p7 allows remote attackers to obtain origin timestamps and then impersonate peers via unspecified vectors.

openSUSE-SU-2016:1292-1

suse-cvrf

больше 9 лет назад

Security update for ntp

EPSS

Процентиль: 97%

0.30064

Средний