CVE-2016-7433
CVE-2016-7433
NTP before 4.2.8p9 does not properly perform the initial sync calculations, which allows remote attackers to unspecified impact via unknown vectors, related to a "root distance that did not include the peer dispersion."
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-updates/2016-12/msg00153.htmlhttp://nwtime.org/ntp428p9_release/http://rhn.redhat.com/errata/RHSA-2017-0252.htmlhttps://bto.bluecoat.com/security-advisory/sa139https://cert-portal.siemens.com/productcert/pdf/ssa-211752.pdfhttps://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbux03706en_ushttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ILMSYVQMMF37MANYEO7KBHOPSC74EKGN/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PABKEYX6ABBFJZGMXKH57X756EJUDS3C/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U5E3XBBCK5IXOLDAH2E4M3QKIYIHUMMP/https://security.FreeBSD.org/advisories/FreeBSD-SA-16:39.ntp.aschttp://support.ntp.org/bin/view/Main/NtpBug3067http://support.ntp.org/bin/view/Main/SecurityNotice#Recent_Vulnerabilities