Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2010-0293

Опубликовано: 08 фев. 2010
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

The client logging functionality in chronyd in Chrony before 1.23.1 does not restrict the amount of memory used for storage of client information, which allows remote attackers to cause a denial of service (memory consumption) via spoofed (1) NTP or (2) cmdmon packets.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:tuxfamily:chrony:*:*:*:*:*:*:*:*
Версия до 1.23-pre1 (включая)
cpe:2.3:a:tuxfamily:chrony:1.18:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.19:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.19-1:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.19.99.1:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.19.99.2:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.19.99.3:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.20:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.21:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.21-pre1:*:*:*:*:*:*:*
cpe:2.3:a:tuxfamily:chrony:1.24-pre1:*:*:*:*:*:*:*

EPSS

Процентиль: 80%
0.01382
Низкий

5 Medium

CVSS2

Дефекты

CWE-399

Связанные уязвимости

ubuntu логотип

CVE-2010-0293

ubuntu
почти 16 лет назад

The client logging functionality in chronyd in Chrony before 1.23.1 does not restrict the amount of memory used for storage of client information, which allows remote attackers to cause a denial of service (memory consumption) via spoofed (1) NTP or (2) cmdmon packets.

debian логотип

CVE-2010-0293

debian
почти 16 лет назад

The client logging functionality in chronyd in Chrony before 1.23.1 do ...

github логотип

GHSA-3vvg-7h3p-gmv3

github
больше 3 лет назад

The client logging functionality in chronyd in Chrony before 1.23.1 does not restrict the amount of memory used for storage of client information, which allows remote attackers to cause a denial of service (memory consumption) via spoofed (1) NTP or (2) cmdmon packets.

EPSS

Процентиль: 80%
0.01382
Низкий

5 Medium

CVSS2

Дефекты

CWE-399