Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

FreeBSD Security Advisory (FreeBSD-SA-09:11.ntpd.asc)

Severity

Medium

Family

FreeBSD Local Security Checks

CVSSv2 Base

6.8

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Created

14 years ago

Modified

6 years ago

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-09:11.ntpd.asc

Insight

The ntpd(8) daemon is an implementation of the Network Time Protocol (NTP) used to synchronize the time of a computer system to a reference time source. Autokey is a security model for authenticating Network Time Protocol (NTP) servers to clients, using public key cryptography. The ntpd(8) daemon is prone to a stack-based buffer-overflow when it is configured to use the 'autokey' security model.

Solution

Upgrade your system to the appropriate stable release or security branch dated after the correction date https://secure1.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-09:11.ntpd.asc

Common Vulnerabilities and Exposures (CVE)

CVE-2009-1252

Free and open-source vulnerability scanner

Available for macOS, Windows, and Linux

FreeBSD Security Advisory (FreeBSD-SA-09:11.ntpd.asc)

Information

Severity

Severity

Family

Family

CVSSv2 Base

CVSSv2 Base

CVSSv2 Vector

CVSSv2 Vector

Created

Created

Modified

Modified

Share

Summary

Insight

Insight

Solution

Solution

Common Vulnerabilities and Exposures (CVE)