Back to search
CVE-2009-3563
Published: Dec 9, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
VU#568372
third-party-advisory
38832
third-party-advisory
oval:org.mitre.oval:def:11225
vdb-entry
signature
38794
third-party-advisory
FEDORA-2009-13121
vendor-advisory
38764
third-party-advisory
oval:org.mitre.oval:def:19376
vdb-entry
signature
37255
vdb-entry
SSRT101144
vendor-advisory
39593
third-party-advisory
IZ71047
vendor-advisory
ADV-2010-0993
vdb-entry
DSA-1948
vendor-advisory
HPSBUX02639
vendor-advisory
1021781
vendor-advisory
IZ68659
vendor-advisory
SSRT100293
vendor-advisory
oval:org.mitre.oval:def:7076
vdb-entry
signature
37922
third-party-advisory
38834
third-party-advisory
FEDORA-2009-13090
vendor-advisory
1023298
vdb-entry
oval:org.mitre.oval:def:12141
vdb-entry
signature
RHSA-2009:1651
vendor-advisory
37629
third-party-advisory
RHSA-2010:0095
vendor-advisory
HPSBUX02859
vendor-advisory
[announce] 20091208 NTP 4.2.4p8 Released
mailing-list
ADV-2010-0510
vdb-entry
RHSA-2009:1648
vendor-advisory
ADV-2010-0528
vdb-entry
VU#417980
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now