Описание
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 1:4.2.6.p5+dfsg-3ubuntu3 |
| esm-infra-legacy/trusty | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.1 |
| lucid | not-affected | |
| precise | released | 1:4.2.6.p3+dfsg-1ubuntu3.2 |
| trusty | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.1 |
| trusty/esm | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.04.1 |
| upstream | released | 4.2.8 |
| utopic | released | 1:4.2.6.p5+dfsg-3ubuntu2.14.10.1 |
Показывать по
5 Medium
CVSS2
Связанные уязвимости
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 contin ...
The receive function in ntp_proto.c in ntpd in NTP before 4.2.8 continues to execute after detecting a certain authentication error, which might allow remote attackers to trigger an unintended association change via crafted packets.
Уязвимость микропрограммного обеспечения системы коммуникаций Cisco Unified Communications Manager, позволяющая удаленному злоумышленнику получить несанкционированный доступ к устройству
5 Medium
CVSS2