Описание
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1:4.2.0a+stable-8.1ubuntu6.3 |
| devel | released | 1:4.2.4p6+dfsg-2ubuntu3 |
| hardy | released | 1:4.2.4p4+dfsg-3ubuntu2.3 |
| intrepid | released | 1:4.2.4p4+dfsg-6ubuntu2.4 |
| jaunty | released | 1:4.2.4p4+dfsg-7ubuntu5.2 |
| karmic | released | 1:4.2.4p6+dfsg-1ubuntu5.1 |
| upstream | released | 4.2.4p8 |
Показывать по
EPSS
6.4 Medium
CVSS2
Связанные уязвимости
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote ...
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.
EPSS
6.4 Medium
CVSS2