Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2018-8956
Description:ntpd in ntp 4.2.8p10, 4.2.8p11, 4.2.8p12 and 4.2.8p13 allow remote attackers to prevent a broadcast client from synchronizing its clock with a broadcast NTP server via soofed mode 3 and mode 5 packets. The attacker must either be a part of the same broadcast network or control a slave in that broadcast network that can capture certain required packets on the attacker's behalf and send them to the attacker.
Test IDs: 1.3.6.1.4.1.25623.1.0.853253   1.3.6.1.4.1.25623.1.0.853290   1.3.6.1.4.1.25623.1.1.4.2020.1823.1   1.3.6.1.4.1.25623.1.1.4.2020.1805.1   1.3.6.1.4.1.25623.1.1.4.2020.14415.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2018-8956
http://www.ntp.org/
https://arxiv.org/abs/2005.01783
https://nikhiltripathi.in/NTP_attack.pdf
https://tools.ietf.org/html/rfc5905
SuSE Security Announcement: openSUSE-SU-2020:0934 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00005.html
SuSE Security Announcement: openSUSE-SU-2020:1007 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00044.html




© 1998-2021 E-Soft Inc. All rights reserved.