CVE-2017-6464 ntp: Denial of Service via malformed config

CVE ID

CVE-2017-6464

DESCRIPTION

A vulnerability was discovered in the NTP server's parsing of configuration
directives. A remote, authenticated attacker could cause ntpd to crash by
sending a crafted message.

CVSS3 Base Score    5.3

Related CVEs: CVE-2017-6463, CVE-2017-6462
 

RESOLUTION

Fixed in latest Unitrends security update with
   ntp-4.2.6p5-12.el6.centos.1

LINK TO ADVISORIES

Have more questions?

Contact us

Was this article helpful?
0 out of 0 found this helpful

Provide feedback for the Documentation team!

Browse this section