0.033
EPSS

CVE-2015-7854

CVSSv4: NA | CVSSv3: 8.8 | CVSSv2: 6.5 | VMScore: 980 | EPSS: 0.03305 | KEV: Not Included
Published: 07/08/2017 Updated: 21/11/2024

Vulnerability Summary

Buffer overflow in the password management functionality in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ntp ntp

ntp ntp 4.2.8

netapp oncommand balance -

netapp oncommand performance manager -

netapp oncommand unified manager -

netapp clustered data ontap -

netapp data ontap -

Vendor Advisories

Buffer overflow in the password management functionality in NTP 42x before 428p4, and 43x before 4377 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file ...
Multiple Cisco products incorporate a version of the ntpd package Versions of this package are affected by one or more vulnerabilities that could allow an unauthenticated, remote attacker to create a denial of service (DoS) condition or modify the time being advertised by a device acting as a network time protocol (NTP) server On October 21st, 2 ...