CVEs-PoC/2016/CVE-2016-9042.md at main

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-02-13 03:02:49 +00:00

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

1.1 KiB

Raw Permalink Blame History

CVE-2016-9042

Description

An exploitable denial of service vulnerability exists in the origin timestamp check functionality of ntpd 4.2.8p9. A specially crafted unauthenticated network packet can be used to reset the expected origin timestamp for target peers. Legitimate replies from targeted peers will fail the origin timestamp check (TEST2) causing the reply to be dropped and creating a denial of service condition.

POC

Reference

http://packetstormsecurity.com/files/142101/FreeBSD-Security-Advisory-FreeBSD-SA-17-03.ntp.html
http://packetstormsecurity.com/files/142284/Slackware-Security-Advisory-ntp-Updates.html
http://www.ubuntu.com/usn/USN-3349-1
https://kc.mcafee.com/corporate/index?page=content&id=SB10201

Github

https://github.com/ARPSyndicate/cve-scores

1.1 KiB Raw Permalink Blame History

CVE-2016-9042

Description

POC

Reference

Github

1.1 KiB

Raw Permalink Blame History