Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ntp ntp 4.3.92 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-7183
Buffer overflow in the decodearr function in ntpq in ntp 4.2.8p6 up to and including 4.2.8p10 allows remote malicious users to execute arbitrary code by leveraging an ntpq query and sending a response with a crafted array.
Ntp Ntp 4.2.8
Freebsd Freebsd 10.4
Freebsd Freebsd 11.1
Freebsd Freebsd 10.3
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Netapp Element Software -
1 Article
3.5
CVSSv2
CVE-2018-7170
ntpd in ntp 4.2.x prior to 4.2.8p7 and 4.3.x prior to 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issu...
Ntp Ntp
Ntp Ntp 4.2.8
Synology Diskstation Manager
Synology Router Manager
Synology Skynas
Synology Virtual Diskstation Manager
Synology Vs960hd Firmware
Netapp Hci -
Netapp Solidfire -
Hpe Hpux-ntp
5
CVSSv2
CVE-2018-7182
The ctl_getitem method in ntpd in ntp-4.2.8p6 prior to 4.2.8p11 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 up to and including 4.2.8p10.
Ntp Ntp 4.2.8
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Netapp Element Software -
1 EDB exploit
5
CVSSv2
CVE-2018-7184
ntpd in ntp 4.2.8p4 prior to 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote malicious users to cause a denial of service (disruption) by sending a packet with a zero-origin timestamp causing the association to reset and setting ...
Ntp Ntp 4.2.8
Synology Skynas -
Synology Router Manager 1.1
Synology Diskstation Manager 6.1
Synology Diskstation Manager 6.0
Synology Virtual Diskstation Manager -
Synology Diskstation Manager 5.2
Synology Vs960hd Firmware -
Slackware Slackware Linux 14.0
Slackware Slackware Linux 14.1
Slackware Slackware Linux 14.2
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 18.04
Netapp Steelstore Cloud Integrated Storage -
Netapp Cloud Backup -
5
CVSSv2
CVE-2018-7185
The protocol engine in ntp 4.2.6 prior to 4.2.8p11 allows a remote malicious users to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the ...
Ntp Ntp
Ntp Ntp 4.2.8
Synology Diskstation Manager
Synology Router Manager
Synology Skynas
Synology Virtual Diskstation Manager
Synology Vs960hd Firmware
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 17.10
Netapp Hci -
Netapp Solidfire -
Hpe Hpux-ntp
Oracle Fujitsu M10-1 Firmware
Oracle Fujitsu M10-4 Firmware
Oracle Fujitsu M10-4s Firmware
Oracle Fujitsu M12-1 Firmware
Oracle Fujitsu M12-2 Firmware
Oracle Fujitsu M12-2s Firmware
4.6
CVSSv2
CVE-2017-6451
The mx4200_send function in the legacy MX4200 refclock in NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds...
Ntp Ntp 4.3.0
Ntp Ntp 4.3.15
Ntp Ntp 4.3.16
Ntp Ntp 4.3.17
Ntp Ntp 4.3.23
Ntp Ntp 4.3.24
Ntp Ntp 4.3.30
Ntp Ntp 4.3.31
Ntp Ntp 4.3.38
Ntp Ntp 4.3.39
Ntp Ntp 4.3.4
Ntp Ntp 4.3.46
Ntp Ntp 4.3.47
Ntp Ntp 4.3.53
Ntp Ntp 4.3.54
Ntp Ntp 4.3.61
Ntp Ntp 4.3.62
Ntp Ntp 4.3.69
Ntp Ntp 4.3.7
Ntp Ntp 4.3.76
Ntp Ntp 4.3.77
Ntp Ntp 4.3.84
4.4
CVSSv2
CVE-2017-6455
NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94, when using PPSAPI, allows local users to gain privileges via a DLL in the PPSAPI_DLLS environment variable.
Ntp Ntp 4.3.10
Ntp Ntp 4.3.11
Ntp Ntp 4.3.18
Ntp Ntp 4.3.19
Ntp Ntp 4.3.2
Ntp Ntp 4.3.26
Ntp Ntp 4.3.27
Ntp Ntp 4.3.33
Ntp Ntp 4.3.34
Ntp Ntp 4.3.40
Ntp Ntp 4.3.41
Ntp Ntp 4.3.42
Ntp Ntp 4.3.49
Ntp Ntp 4.3.5
Ntp Ntp 4.3.56
Ntp Ntp 4.3.57
Ntp Ntp 4.3.64
Ntp Ntp 4.3.65
Ntp Ntp 4.3.71
Ntp Ntp 4.3.72
Ntp Ntp 4.3.79
Ntp Ntp 4.3.8
2.1
CVSSv2
CVE-2017-6459
The Windows installer for NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 allows local users to have unspecified impact via vectors related to an argument with multiple null bytes.
Ntp Ntp 4.3.14
Ntp Ntp 4.3.15
Ntp Ntp 4.3.21
Ntp Ntp 4.3.22
Ntp Ntp 4.3.29
Ntp Ntp 4.3.3
Ntp Ntp 4.3.30
Ntp Ntp 4.3.37
Ntp Ntp 4.3.38
Ntp Ntp 4.3.44
Ntp Ntp 4.3.45
Ntp Ntp 4.3.51
Ntp Ntp 4.3.52
Ntp Ntp 4.3.53
Ntp Ntp 4.3.6
Ntp Ntp 4.3.60
Ntp Ntp 4.3.67
Ntp Ntp 4.3.68
Ntp Ntp 4.3.75
Ntp Ntp 4.3.76
Ntp Ntp 4.3.82
Ntp Ntp 4.3.83
4.6
CVSSv2
CVE-2017-6452
Stack-based buffer overflow in the Windows installer for NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 allows local users to have unspecified impact via an application path on the command line.
Ntp Ntp 4.3.11
Ntp Ntp 4.3.12
Ntp Ntp 4.3.19
Ntp Ntp 4.3.2
Ntp Ntp 4.3.26
Ntp Ntp 4.3.27
Ntp Ntp 4.3.34
Ntp Ntp 4.3.35
Ntp Ntp 4.3.41
Ntp Ntp 4.3.42
Ntp Ntp 4.3.49
Ntp Ntp 4.3.5
Ntp Ntp 4.3.50
Ntp Ntp 4.3.57
Ntp Ntp 4.3.58
Ntp Ntp 4.3.64
Ntp Ntp 4.3.65
Ntp Ntp 4.3.72
Ntp Ntp 4.3.73
Ntp Ntp 4.3.8
Ntp Ntp 4.3.80
Ntp Ntp 4.3.87
6.5
CVSSv2
CVE-2017-6460
Stack-based buffer overflow in the reslist function in ntpq in NTP prior to 4.2.8p10 and 4.3.x prior to 4.3.94 allows remote servers have unspecified impact via a long flagstr variable in a restriction list response.
Ntp Ntp 4.3.13
Ntp Ntp 4.3.14
Ntp Ntp 4.3.11
Ntp Ntp 4.3.12
Ntp Ntp 4.3.19
Ntp Ntp 4.3.2
Ntp Ntp 4.3.26
Ntp Ntp 4.3.20
Ntp Ntp 4.3.21
Ntp Ntp 4.3.29
Ntp Ntp 4.3.3
Ntp Ntp 4.3.36
Ntp Ntp 4.3.37
Ntp Ntp 4.3.43
Ntp Ntp 4.3.44
Ntp Ntp 4.3.51
Ntp Ntp 4.3.52
Ntp Ntp 4.3.59
Ntp Ntp 4.3.6
Ntp Ntp 4.3.66
Ntp Ntp 4.3.67
Ntp Ntp 4.3.74
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »