ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (reject broadcast mode packets) via the poll interval in a broadcast packet.

Mitigation

Only use broadcast mode on trusted networks.

References

support.ntp.org/bin/view/Main/NtpBug3113

bugzilla.redhat.com/show_bug.cgi?id=1397328

prion 1

cve 1

nvd 1

debiancve 1

cvelist 1

talos 1

ubuntucve 1

openvas 13

nessus 26

seebug 1

ibm 3

aix 1

f5 1

freebsd 2

freebsd_advisory 1

ubuntu 2

archlinux 1

huawei 1

slackware 1

cert 1

symantec 1

cisco 1

cloudfoundry 1

prion

Code injection

2017-01-13 16:59:00

cve

CVE-2016-7428

2017-01-13 16:59:00

nvd

CVE-2016-7428

2017-01-13 16:59:00

debiancve

CVE-2016-7428

2017-01-13 16:59:00

cvelist

CVE-2016-7428

2017-01-13 16:00:00

talos

Network Time Protocol Broadcast Mode Poll Interval Enforcement Denial of Service Vulnerability

2016-11-21 00:00:00

ubuntucve

CVE-2016-7428

2017-01-13 00:00:00

openvas

Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2020-1611)

2020-06-03 00:00:00

NTP.org 'ntpd' 4.2.8p6 - 4.2.8p8, 4.3.90 - 4.3.93 Multiple Vulnerabilities (Nov 2016)

2016-06-03 00:00:00

Huawei EulerOS: Security Advisory for ntp (EulerOS-SA-2020-2225)

2020-10-21 00:00:00

nessus

EulerOS 2.0 SP5 : ntp (EulerOS-SA-2020-1611)

2020-06-02 00:00:00

EulerOS Virtualization 3.0.2.2 : ntp (EulerOS-SA-2020-2225)

2020-10-21 00:00:00

EulerOS Virtualization 3.0.6.0 : ntp (EulerOS-SA-2020-1723)

2020-07-01 00:00:00

seebug

Network Time Protocol Broadcast Mode Poll Interval Enforcement Denial of Service Vulnerability(CVE-2016-7428)

2017-10-11 00:00:00

ibm

Security Bulletin: Multiple vulnerabilities in Network Time Protocol (NTP) affect IBM Virtualization Engine TS7700 (CVE-2016-7427, CVE-2016-7428, CVE-2016-9310, CVE-2016-9311)

2024-01-05 15:00:07

Security Bulletin: Vulnerabilities in NTP affect IBM Flex System Chassis Management Module (CMM)

2019-01-31 02:25:02

Security Bulletin: Multiple vulnerabilities in ntp affect IBM Flex System Manager (FSM)

2018-06-18 01:36:39

aix

There are multiple vulnerabilities in NTPv3 and NTPv4 that impact AIX.

2017-02-13 15:32:47

K80996302 : Multiple NTP vulnerabilities

2016-12-16 00:00:00

freebsd

FreeBSD -- Multiple vulnerabilities of ntp

2016-12-22 00:00:00

ntp -- multiple vulnerabilities

2016-11-21 00:00:00

freebsd_advisory

FreeBSD-SA-16:39.ntp

2016-12-22 00:00:00

ubuntu

NTP vulnerabilities

2019-01-23 00:00:00

NTP vulnerabilities

2017-07-05 00:00:00

archlinux

[ASA-201611-28] ntp: multiple issues

2016-11-26 00:00:00

huawei

Security Advisory - Multiple NTPd Vulnerabilities in Huawei Products

2017-11-29 00:00:00

slackware

[slackware-security] ntp

2016-11-21 19:25:10

cert

NTP.org ntpd contains multiple denial of service vulnerabilities

2016-11-21 00:00:00

symantec

SA139 : November 2016 NTP Security Vulnerabilities

2017-01-12 08:00:00

cisco

Multiple Vulnerabilities in Network Time Protocol Daemon Affecting Cisco Products: November 2016

2016-11-23 16:00:00

cloudfoundry

USN-3349-1: NTP vulnerabilities | Cloud Foundry

2017-08-04 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

0.01 Low

EPSS

Percentile

83.7%

JSON

Related for RH:CVE-2016-7428