mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
903 B
903 B
CVE-2016-2517
Description
NTP before 4.2.8p7 and 4.3.x before 4.3.92 allows remote attackers to cause a denial of service (prevent subsequent authentication) by leveraging knowledge of the controlkey or requestkey and sending a crafted packet to ntpd, which changes the value of trustedkey, controlkey, or requestkey. NOTE: this vulnerability exists because of a CVE-2016-2516 regression.
POC
Reference
- http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
- https://www.kb.cert.org/vuls/id/718152
Github
No PoCs found on GitHub currently.