### [CVE-2016-1549](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-1549)
![](https://img.shields.io/static/v1?label=Product&message=NTP&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=NTPSec&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=unspecified&color=brighgreen)

### Description

A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a80167dc742d2b74 and a5fb34b9cc89b92a8fef2f459004865c93bb7f92 and modify a victim's clock.

### POC

#### Reference
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- http://www.talosintelligence.com/reports/TALOS-2016-0083/
- http://www.talosintelligence.com/reports/TALOS-2016-0083/

#### Github
No PoCs found on GitHub currently.