Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
3.3
CVSSv2

CVE-2016-7427

Published: 13/01/2017 Updated: 24/01/2019
CVSS v2 Base Score: 3.3 | Impact Score: 2.9 | Exploitability Score: 6.5
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 294
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Ntp

Vulnerability Summary

The broadcast mode replay prevention functionality in ntpd in NTP prior to 4.2.8p9 allows remote malicious users to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packet.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

ntp ntp 4.2.8

Vendor Advisories

Ubuntu Security Notice: ntp vulnerabilities
Several security issues were fixed in NTP ...
Ubuntu Security Notice: ntp vulnerabilities
Several security issues were fixed in NTP ...
Red Hat: CVE-2016-7427
The broadcast mode replay prevention functionality in ntpd in NTP before 428p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via a crafted broadcast mode packet ...
Arch Linux Issues:
The broadcast mode of NTP is expected to only be used in a trusted network If the broadcast network is accessible to an attacker, a potentially exploitable denial of service vulnerability in ntpd's broadcast mode replay prevention functionality can be abused An attacker with access to the NTP broadcast domain can periodically inject specially cra ...

References

CWE-400https://www.kb.cert.org/vuls/id/633847http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilitieshttp://support.ntp.org/bin/view/Main/NtpBug3114http://nwtime.org/ntp428p9_release/http://www.securityfocus.com/bid/94447https://bto.bluecoat.com/security-advisory/sa139https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_ushttp://www.securitytracker.com/id/1037354https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.aschttps://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03883en_ushttps://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03899en_ushttps://usn.ubuntu.com/3707-2/https://nvd.nist.govhttps://usn.ubuntu.com/3707-2/https://www.kb.cert.org/vuls/id/633847
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook