QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2016-4955

Back to search

CVE-2016-4955

Published: Jul 5, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

ntpd in NTP 4.x before 4.2.8p8, when autokey is enabled, allows remote attackers to cause a denial of service (peer-variable clearing and association outage) by sending (1) a spoofed crypto-NAK packet or (2) a packet with an incorrect MAC value at a certain time.

VendorProductVersions

n/a

n/a

affected
n/a

References

SUSE-SU-2016:1602
vendor-advisory
x_refsource_SUSE
USN-3096-1
vendor-advisory
x_refsource_UBUNTU
FEDORA-2016-c3bd6a3496
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2016:1583
vendor-advisory
x_refsource_SUSE
FreeBSD-SA-16:24
vendor-advisory
x_refsource_FREEBSD
SUSE-SU-2016:1912
vendor-advisory
x_refsource_SUSE
FEDORA-2016-89e0874533
vendor-advisory
x_refsource_FEDORA
91007
vdb-entry
x_refsource_BID
1036037
vdb-entry
x_refsource_SECTRACK
SUSE-SU-2016:1584
vendor-advisory
x_refsource_SUSE
SUSE-SU-2016:2094
vendor-advisory
x_refsource_SUSE
http://bugs.ntp.org/3043
x_refsource_CONFIRM
VU#321640
third-party-advisory
x_refsource_CERT-VN
FEDORA-2016-50b0066b7f
vendor-advisory
x_refsource_FEDORA
openSUSE-SU-2016:1636
vendor-advisory
x_refsource_SUSE
SUSE-SU-2016:1563
vendor-advisory
x_refsource_SUSE
GLSA-201607-15
vendor-advisory
x_refsource_GENTOO
SUSE-SU-2016:1568
vendor-advisory
x_refsource_SUSE
VU#321640
third-party-advisory
x_refsource_CERT-VN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now