Описание
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.
Ссылки
- Release NotesVendor Advisory
- Issue TrackingMitigationVendor Advisory
- Vendor Advisory
- Third Party AdvisoryUS Government Resource
- Release NotesVendor Advisory
- Issue TrackingMitigationVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.2.8 (включая)
cpe:2.3:a:ntp:ntp:*:p8:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.14524
Средний
6.5 Medium
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-400
Связанные уязвимости
CVSS3: 6.5
ubuntu
почти 9 лет назад
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.
CVSS3: 4.8
redhat
почти 9 лет назад
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.
CVSS3: 6.5
debian
почти 9 лет назад
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 ...
CVSS3: 6.5
github
больше 3 лет назад
The control mode (mode 6) functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to set or unset traps via a crafted control mode packet.
EPSS
Процентиль: 94%
0.14524
Средний
6.5 Medium
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-400