Denial of Service Vulnerability in ntpd via Crypto-NAK Packet

Denial of Service Vulnerability in ntpd via Crypto-NAK Packet

CVE-2016-4957 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

ntpd in NTP before 4.2.8p8 allows remote attackers to cause a denial of service (daemon crash) via a crypto-NAK packet. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-1547.

Learn more about our Web Application Penetration Testing UK.