The process_packet function in ntp_proto.c in ntpd in NTP 4.x before 4.2.8p8 allows remote attackers to cause a denial of service (peer-variable modification) by sending spoofed packets from many source IP addresses in a certain scenario, as demonstrated by triggering an incorrect leap indication.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HNtp
APPNtp4.2.84.3.0 – 4.3.93 (bez)4.2.0 – 4.2.8 (bez)Opensuse Leap
OSOpensuse42.1Opensuse
OSOpensuse13.2Oracle Solaris
OSOracle1011.3Siemens Simatic Net Cp 443 1 Opc Ua
HWSiemenswszystkie wersjeSiemens Simatic Net Cp 443 1 Opc Ua Firmware
OSSiemenswszystkie wersjeSiemens Tim 4r Ie
HWSiemenswszystkie wersjeSiemens Tim 4r Ie Dnp3
HWSiemenswszystkie wersjeSiemens Tim 4r Ie Dnp3 Firmware
OSSiemenswszystkie wersjeSiemens Tim 4r Ie Firmware
OSSiemenswszystkie wersjeSUSE Linux Enterprise Desktop
OSSuse12SUSE Linux Enterprise Server
OSSuse1112SUSE Manager
APPSuse2.1SUSE Manager Proxy
APPSuse2.1SUSE Openstack Cloud
APPSuse5
Powiązane podatności
Sudo: eskalacja uprawnień do root poprzez opcję --chroot (CVE-2025-32463)
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the...
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Su...
rcube_image.php in Roundcube Webmail before 1.4.4 allows attackers to execute arbitrary code via shell metacha...
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process Clea...