← Back

Hpux Ntp

hpux-ntp

Vendor: Hpe • 7 CVEs

CVEs (7)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-8936
5Fedoraproject
HpeNetapp+2 more
6Clustered Data Ontap
Data OntapFedora+3 more
Nov 21, 2024
May 15, 2019
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
NTP through 4.2.8p12 has a NULL Pointer Dereference.
CVE-2016-9042
4Freebsd
HpeNtp+1 more
4Freebsd
Hpux NtpNtp+1 more
Nov 21, 2024
Jun 4, 2018
N/A· v4
5.9 MEDIUM· v3
4.3 MEDIUM· v2
An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for...Show more
An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.Show less
CVE-2018-7185
6Canonical
HpeNetapp+3 more
16Diskstation Manager
Fujitsu M10 1 FirmwareFujitsu M10 4 Firmware+13 more
Jan 14, 2025
Mar 6, 2018
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side"...Show more
The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.Show less
CVE-2018-7170
4Hpe
NetappNtp+1 more
9Diskstation Manager
HciHpux Ntp+6 more
Jan 14, 2025
Mar 6, 2018
N/A· v4
5.3 MEDIUM· v3
3.5 LOW· v2
ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and mo...Show more
ntpd in ntp 4.2.x before 4.2.8p7 and 4.3.x before 4.3.92 allows authenticated users that know the private symmetric key to create arbitrarily-many ephemeral associations in order to win the clock selection of ntpd and modify a victim's clock via a Sybil attack. This issue exists because of an incomplete fix for CVE-2016-1549.Show less
CVE-2017-6458
4Apple
HpeNtp+1 more
4Hpux Ntp
Mac Os XNtp+1 more
May 13, 2026
Mar 27, 2017
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
Multiple buffer overflows in the ctl_put* functions in NTP before 4.2.8p10 and 4.3.x before 4.3.94 allow remote authenticated users to have unspecified impact via a long variable.
CVE-2016-7434
2Hpe
Ntp
2Hpux Ntp
Ntp
May 13, 2026
Jan 13, 2017
N/A· v4
7.5 HIGH· v3
4.3 MEDIUM· v2
The read_mru_list function in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (crash) via a crafted mrulist query.
CVE-2016-7426
4Canonical
HpeNtp+1 more
9Enterprise Linux Desktop
Enterprise Linux ServerEnterprise Linux Server Aus+6 more
May 13, 2026
Jan 13, 2017
N/A· v4
7.5 HIGH· v3
4.3 MEDIUM· v2
NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sou...Show more
NTP before 4.2.8p9 rate limits responses received from the configured sources when rate limiting for all associations is enabled, which allows remote attackers to cause a denial of service (prevent responses from the sources) by sending responses with a spoofed source address.Show less